Microsoft E5 Security Analyst – Cybersecurity Incident Response
Are you ready to leverage your expertise in Microsoft E5 security to strengthen cyber defense and incident response capabilities? If you thrive in high-stakes environments, enjoy solving complex problems, and are passionate about protecting organizations from evolving threats, this opportunity is for you.
Working with one of our top financial clients, we are looking for a Microsoft E5 Security Analyst – Cybersecurity Incident Response who will lead and support the Cyber Security Incident Response Team (CSIRT). The successful candidate will enhance detection and hunting techniques, develop incident response playbooks, and drive continuous improvement in security processes. This role requires technical expertise in the Microsoft security ecosystem, strong communication skills, and a proactive approach to solving complex cybersecurity challenges.
Responsibilities:
- Lead and contribute to investigations of cybersecurity incidents.
- Develop detection and hunting techniques to identify evolving threats.
- Create, maintain, and optimize incident response playbooks and runbooks.
- Contribute to containment and recovery strategies during incidents.
- Provide guidance on assessing risks, identifying gaps, and delivering security solutions.
- Support process reviews, identify areas for improvement, and drive enhancements.
- Influence stakeholders to reduce risk and foster a strong security culture.
Must-Have Skills:
- Proven experience implementing or optimizing the Microsoft E5 security suite.
- Strong knowledge of the Microsoft security ecosystem (E5/E3, XDR, Sentinel).
- Experience creating incident response playbooks/runbooks (knowledge and document management).
- Strong communication skills (both written and verbal).
- Ability to create executive-level presentations and reports (PMP-related skill set).
- Proactive problem-solver with creativity in designing security solutions.
Nice-to-Have Skills:
- Familiarity with automation tasks using XSOAR.
- Scripting knowledge (Python, creating custom APIs).
- Experience in strategic optimization of a Security Operations Center (SOC), moving from traditional to modern platforms.
BeachHead is an equal opportunity agency and employer. We advocate for you and welcome anyone regardless of race, color, religion, national origin, sex, physical or mental disability, or age.