Microsoft 365 Security Engineer

AmeXio is expanding its cybersecurity team supporting a leading international banking client in securing and evolving its Microsoft cloud environments. You will join a mature AmeXio delivery team responsible for securing and optimizing the client’s Microsoft 365 and Azure environments.

The objective of this role is to further strengthen the overall security posture, enhance operational security capabilities, accelerate the adoption of Zero Trust principles and ensure continuous compliance with the regulatory standards applicable to the banking sector.

The consultant will work in close collaboration with the client’s security, infrastructure, and governance stakeholders in an international environment.

Mission

You will act as a security expert and will:

• Design, deploy, and manage security solutions using Microsoft Defender AV, EDR/XDR, and Microsoft Sentinel (SIEM/SOAR) across endpoints, identities, and cloud workloads. Implement and maintain Microsoft Purview for data governance, information protection, and compliance monitoring.
• Lead security posture and risk assessments across M365 environments, producing actionable remediation plans and executive-ready reports.
• Guide adoption of Zero Trust principles, including conditional access, identity protection, and integrated controls across M365 and Azure.
• Provide architectural governance and technical advisory for Defender XDR, Entra ID, Intune, and Purview.
• Respond to security incidents, perform root cause analysis, and enhance incident response processes.
• Deliver technical workshops, trainings, and awareness sessions for technical and non-technical stakeholders.
• Stay current with evolving threats, Microsoft security product roadmaps, and industry best practices to proactively strengthen security posture.

Profile

• Minimum 5 years of experience in cybersecurity engineering, with strong specialization in Microsoft 365 and Azure security.
• Proven hands-on expertise with Microsoft Defender (AV, EDR/XDR), Sentinel, Purview, Entra ID, and Intune.
• Strong understanding of Zero Trust architecture, identity and endpoint security, threat detection, incident response, and regulatory compliance frameworks.
• Demonstrated experience conducting security assessments and delivering structured remediation plans.
• Ability to communicate complex technical concepts clearly to both technical and non-technical audiences.
• Experience in large-scale or regulated environments, ideally within banking or financial services.
• Microsoft security certifications (SC-100, AZ-500, MS-500, SC-300, SC-200) are highly desirable.
• Professional proficiency in English is mandatory; French is considered an asset.