Information Security Consultant managing security standards implementation at LUZA Group in Lisbon, Portugal. Handling analysis of risk and supporting audits while working in a hybrid model.
About the role
- Azure Security Engineer required to remediate vulnerabilities in a hybrid environment. Focusing on Microsoft Defender Suite and improving security posture across Azure and endpoints.
Responsibilities
- **Core Responsibilities**
- **Microsoft Defender Suite (Primary Requirement)**
- Monitor and remediate vulnerabilities surfaced by **Defender for Cloud**
- Manage and optimise **Defender for Endpoint**, attack surface reduction and device hardening
- Operate and tune **External Attack Surface Management (EASM)** findings and asset exposure
- Improve Secure Score and continuously reduce risk through technical remediation
- Collaborate with SOC to triage, respond, and close findings
- **Data Protection & Compliance (Purview-Led)**
- Implement and manage **Purview** (DLP, sensitivity labels, insider risk, records)
- Assist with compliance uplift against **ISO 27001, SOC2, GDPR, NIS2**
- Maintain audit trails, evidence, runbooks, and security documentation
- **Vulnerability & Configuration Hardening**
- Hands-on remediation — patching, configuration fixes, policy deployments
- Work with product teams to close findings rather than just escalate
- Improve posture for identity, endpoints, networking, and cloud workloads
- Implement conditional access, PIM, key vault, and encryption standards
- **Detection, Monitoring & Response**
- Tune Sentinel analytics, automation rules, alert noise reduction
- Support incident investigation, triage, threat hunting as needed
- Generate security metrics, reporting, and measurable improvement trends
- **Collaboration & Delivery**
- Work with DevOps, Infra, Desktop, and Cloud teams on real-world fixes
- Translate risk into understandable action for stakeholders
- Create repeatable processes to shorten future remediation cycles
Requirements
- **Must-Have**
- ✓ Strong hands-on experience with **Defender for Cloud, Defender for Endpoint, EASM**
- ✓ Working knowledge of **Purview, DLP, sensitivity labels, insider risk**
- ✓ Demonstrable history of closing vulnerabilities and improving posture
- ✓ Azure identity & access security (Entra ID, Conditional Access, PIM)
- ✓ PowerShell/MS Graph for automation or scripted remediation
- **Nice to Have**
- Sentinel exposure (analytic rules, workbooks, automation)
- Understanding of Zero Trust principles and Microsoft Compliance Manager
- Experience working in regulated or audited environments
- **Certifications Required**
- AZ-500 – Azure Security Engineer Associate
- SC-100 (or commitment to completion within 12 months)
- Plus one of → MS-500 or SC-400 or SC-900
Benefits
- **3 month initial contract outside IR35**
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Cybersecurity Analyst at Boeing performing advanced cybersecurity assessments and risk evaluations for third - party vendors. Focusing on automation, lean processes, and collaborating with key stakeholders across departments.
Cybersecurity Manager ensuring regulatory compliance in information security within the Mexican framework. Collaborating with technology teams to strengthen governance, risk, and control model.
CISA Auditor focusing on cloud security audits for a Zurich - based international bank. Ensuring cybersecurity and identifying vulnerabilities in IT systems with risk - oriented audits.
Cybersecurity Specialist managing compliance for DoD security transition to Zero Trust Architecture. Involves overseeing RMF activities and ensuring ATO deadlines are met in cloud environments.
Engineer II responsible for managing enterprise customer support in Security Engineering. Focused on troubleshooting and diagnosing security incidents in a hybrid work environment.
Guest Safety Agent at HRI Hospitality ensuring safety and hospitality for guests and managing outlet spaces. Maintaining a secure environment while engaging with guests and visitors in New Orleans.
Cybersecurity Architect for Saint Louis University developing and assessing security strategies and architecture. Ensuring secure IT services through effective security technologies and practices.
Senior Commercial Manager developing and executing Cyber Security strategies, managing client portfolios and leading complex negotiations in São Paulo.
Security Officer responsible for maintaining safety at WarHorse Casino. Enforcing policies, responding to incidents, and providing customer service to guests.