Cyber Security Engineer at Vigil

SUMMARY:

As a Cyber Security Engineer, you will play a key role in protecting enterprise systems, data, and identities across cloud and Microsoft environments. You’ll design, implement, and continuously improve security controls across Azure, Microsoft 365, identity platforms, and network infrastructure.

Working within a collaborative, cross-functional environment, you will drive proactive risk management, incident response, governance, and compliance initiatives while ensuring security best practices are embedded across the organisation.

WHAT WILL YOU BE DOING:

You will be joining our engineering team and will be a valued member working closely in a collaborative, autonomous, cross-functional team. You will help with the following:

• Implement and manage security controls across Azure environments (NSGs, Azure Firewall, Private Endpoints, identity, storage, compute, virtual networks)\
• Monitor and improve cloud security posture using Microsoft Defender for Cloud and Azure Policy
• Deploy, configure and maintain Microsoft Sentinel (SIEM), including detection rules, threat hunting and automation playbooks
• Configure and operate Microsoft Purview solutions (DLP, Information Protection, Insider Risk, eDiscovery, audit logging, data classification)
• Secure Microsoft 365 services, including Exchange Online, SharePoint, OneDrive, Teams and Power Platform
• Manage email security tooling (anti-phishing, anti-spoofing, Safe Links, Safe Attachments, mail hygiene policies)
• Support and manage MDR/SOC capabilities in collaboration with external security partners
• Investigate and respond to security incidents (compromised accounts, suspicious logins, email threats, endpoint alerts)
• Implement and maintain Zero Trust network security principles (segmentation, IDS/IPS, secure remote access)
• Lead or support incident response activities, including triage, containment, root cause analysis and reporting
• Automate security processes and compliance checks using PowerShell and Microsoft Graph API
• Conduct risk assessments, coordinate penetration testing and track remediation actions
• Develop and maintain security standards, runbooks, procedures and documentation
• Provide expert guidance and best-practice security recommendations to internal stakeholders

WHAT WE ARE LOOKING FOR:

• 3–5 years of hands-on experience in cybersecurity (cloud, identity and Microsoft security focus preferred)
• Strong experience with Microsoft Entra ID (Conditional Access, PIM, Identity Governance)
• Proven experience securing Azure environments (Defender for Cloud, Sentinel, NSGs, Azure Firewall)
• Experience with Microsoft 365 security & compliance tools (Purview, Defender for Office 365 / Endpoint)
• Solid understanding of networking fundamentals (TCP/IP, DNS, firewalls, VPNs, segmentation)
• Practical incident response and investigation experience
• Experience writing and maintaining PowerShell scripts for automation
• Strong analytical and problem-solving skills
• Excellent communication skills, with the ability to explain technical concepts to non-technical stakeholders

CERTIFICATIONS:

Minimum (or working towards):

• Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900)

• CompTIA Security+

Desirable:

• Microsoft Certified: Security Operations Analyst Associate (SC-200)

• Microsoft Certified: Identity and Access Administrator Associate (SC-300)

AWESOME BUT NOT REQUIRED:

• Experience tuning SIEM platforms and conducting threat hunting (Sentinel preferred)
• Experience with secure email gateways (e.g., Mimecast or similar)
• Exposure to vulnerability management tools and processes
• Familiarity with Cyber Essentials Plus, ISO 27001 or similar compliance frameworks
• Experience supporting or coordinating penetration testing exercises

WHAT’S IN IT FOR YOU?

• Be part of our collegial environment where responsibility and authority are shared equally amongst colleagues, and help create our company culture
• A culture in which we don’t criticise failure but ensure we learn from our mistakes
• An Agile environment where your ideas are welcome
• The possibility to grow and experience different projects
• Fully remote
• Ongoing Training & Mentoring
• The possibility of travelling

- ATTENTION! THIS POSITION IS FOR BRAZIL-BASED ONLY