Microsoft Security Engineer I

Thanks for the click. We know your time is valuable so we will get right to it.

We’ve amassed some of the best and brightest minds in cyber security who are passionate about protecting the digital world. Our team blends advanced technology alongside deep expertise to tackle the toughest cyber threats out there. Put simply, our mission is to stay ahead of the curve and create a safer digital landscape for our partners, and we think adding a Microsoft Security Engineer I will up our cyber game.

The Microsoft Security Engineer I will be responsible for helping identify, investigate, and mitigate endpoint threats within customer environments using Microsoft security technologies. This role will work across the full Microsoft security stack — from monitoring alerts in Sentinel to enforcing identity policies in Entra ID — helping our managed clients stay protected, compliant, and resilient. This role is ideal for someone who loves solving real-world security problems, thrives on automation, and wants to build deep expertise in the Microsoft ecosystem.

What you’ll be doing.

• Assist in preparing client-ready security reports, executive summaries, and monthly posture reviews
• Perform threat hunting exercises within customer environments using Microsoft Defender XDR, Sentinel, and other tools to identify, investigate, and remediate threats
• Help facilitate training for security operations team on becoming more proficient with Microsoft tools and workflows to aid in investigations.
• Collaborate with the incident security operations teams to manage and resolve incidents for Microsoft customers in a timely manner.
• Create and improve threat detection strategies based on intelligence from both internal and external sources.
• Support onboarding of new managed clients onto the Microsoft security stack
• Investigate endpoint, identity, and cloud alerts; perform initial root cause analysis and document findings
• Support Defender XDR configuration across Defender for Endpoint, Identity, Cloud Apps, and Office 365
• Tune detection rules, analytics queries (KQL), and suppression logic to reduce alert fatigue
• Participate in incident response efforts, coordinating with senior engineers and client stakeholders
• Identify repeatable tasks and propose automation solutions to improve team efficiency

What does it take to succeed in this role?

• Hand-on experience in cybersecurity, IT, or a Microsoft cloud role (internships and lab experience count)
• Demonstrated familiarity with at least two Microsoft security tools (Sentinel, Defender, Entra ID, Intune, or Purview)
• Understanding of core security concepts: SIEM, threat detection, identity management, endpoint protection, and the MITRE ATT&CK framework
• Experience writing KQL queries — even basic ones — or a clear demonstrated ability and motivation to learn
• Understanding of cloud security concepts and Azure services.
• ability to analyze and mitigate security threats and incidents.
• Problem-solving skills and the ability to work under pressure.
• Excellent communication skills to effectively collaborate with technical and non-technical stakeholders.
• Current Microsoft SC-200 certification strongly encouraged.

Work Arrangement

This is an onsite position based in the United States.
At this time, we are not hiring candidates who require visa sponsorship. All applicants must be legally authorized to work in the United States without the need for current or future visa sponsorship.

How we work.

Our 3 values define how we operate internally as well as externally:

Vision - We embrace a forward-thinking mindset. Our team has a clear and inspiring picture of the future that helps drive our decisions towards creating and delivering world-class security services.

Velocity - We have a bias for action. We move swiftly and with purpose toward our goals and objectives and can easily adapt (and adjust) along the way.

Vigilance – We foster a culture of proactive awareness for our company and our customers, who trust us to be an extension of their team. We are always looking for areas where we can innovate, improve, fix, transform and revolutionize, which ensures the protection, safety and success of everyone at SilverSky.

Individuals that can act intelligently and confidently without an ego will thrive.

If this opportunity sounds interesting and you are passionate about redefining how the world thinks about cyber security, we want to hear from you. Apply now if you are interested in learning more about how we can change the rules of engagement, together.

About SilverSky

We are a global cyber security company with more than 20 years of professional experience in the industry. Our 300+ employees are on a mission to protect our customers with comprehensive, adaptive security services that maximize technology and automate responses, while empowering security analysts to hunt for threats, react and respond immediately. It’s the human enhanced response that differentiates SilverSky and allows us to create the most comprehensive managed detection and response (MxDR) solution in the industry by delivering on our Vision, Velocity, Vigilance philosophy. Follow us on X and LinkedIn to learn more.