[Remote] Microsoft Security Engineer I
Note: The job is a remote job and is open to candidates in USA. SilverSky is a global cyber security company dedicated to protecting its customers with comprehensive security services. They are seeking a Microsoft Security Engineer I to help identify, investigate, and mitigate endpoint threats using Microsoft security technologies, while working across the full Microsoft security stack to ensure client safety and compliance.ResponsibilitiesAssist in preparing client-ready security reports, executive summaries, and monthly posture reviewsPerform threat hunting exercises within customer environments using Microsoft Defender XDR, Sentinel, and other tools to identify, investigate, and remediate threatsHelp facilitate training for security operations team on becoming more proficient with Microsoft tools and workflows to aid in investigationsCollaborate with the incident security operations teams to manage and resolve incidents for Microsoft customers in a timely mannerCreate and improve threat detection strategies based on intelligence from both internal and external sourcesSupport onboarding of new managed clients onto the Microsoft security stackInvestigate endpoint, identity, and cloud alerts; perform initial root cause analysis and document findingsSupport Defender XDR configuration across Defender for Endpoint, Identity, Cloud Apps, and Office 365Tune detection rules, analytics queries (KQL), and suppression logic to reduce alert fatigueParticipate in incident response efforts, coordinating with senior engineers and client stakeholdersIdentify repeatable tasks and propose automation solutions to improve team efficiencySkillsHand-on experience in cybersecurity, IT, or a Microsoft cloud role (internships and lab experience count)Demonstrated familiarity with at least two Microsoft security tools (Sentinel, Defender, Entra ID, Intune, or Purview)Understanding of core security concepts: SIEM, threat detection, identity management, endpoint protection, and the MITRE ATT&CK frameworkExperience writing KQL queries — even basic ones — or a clear demonstrated ability and motivation to learnUnderstanding of cloud security concepts and Azure servicesAbility to analyze and mitigate security threats and incidentsProblem-solving skills and the ability to work under pressureExcellent communication skills to effectively collaborate with technical and non-technical stakeholdersCurrent Microsoft SC-200 certification strongly encouragedCompany OverviewSilversky offers managed extended detection and response (MxDR) services in cybersecurity. It was founded in 1997, and is headquartered in Morrisville, North Carolina, USA, with a workforce of 201-500 employees. Its website is http://silversky.com.