Microsoft Purview and Entra ID Specialist

- Design, implement, and manage Data Loss Prevention (DLP) policies to prevent unauthorized data sharing including deploying and maintaining Information Protection policies (AIP/MPIP), such as sensitivity labels. - Configure and monitor policies to detect, investigate, and act on malicious or unintentional activities that could lead to data leakage or security incidents. - Monitor and investigate communications within the organization to detect and address potential violations of corporate policy or regulatory standards. - Manage and secure user, group, and workload identities including administering App & Enterprise App registrations and managing guest access for B2B and B2C scenarios. - Develop and manage Conditional Access (CA) policies to enforce granular access controls, including Multi-Factor Authentication (MFA), based on user, device, and location. - Implement and manage Self-Service Password Reset (SSPR) and Password Writeback to ensure seamless and secure user experience. - Act as a subject matter expert for the core components of the Defender XDR suite. - Manage endpoint protection, detection, and response across our device fleet. - Protect against email-based threats, including phishing, malicious attachments, and compromised links. - Monitor on-premises Active Directory signals to identify and investigate threats related to compromised identities. - Enforce security policies and provide threat protection across our cloud applications. - Prioritize and address critical vulnerabilities and misconfigurations based on a risk-based assessment. - Work with internal IT and other security teams to ensure the effectiveness of the platform. - Serve as a point of contact for external services like Microsoft Defender Experts for proactive hunting and expert guidance. - Document incident response procedures, create reports on security posture, and provide regular briefings to leadership. - Implement policies for records management and retention to ensure that data is retained according to legal and business requirements and securely disposed of when no longer needed. - Utilize DSPM capabilities to understand data risk, identify sensitive data across the environment, and implement controls to mitigate including managing data security posture related to AI applications and models. - Support legal and compliance teams by utilizing Purviews eDiscovery and audit capabilities for investigations. - Utilize Microsoft Entra ID Protection to identify and respond to compromised credentials and other identity-based risks. - Work closely with the Defender for Identity team to monitor on-premises Active Directory signals for threats. - Implement and maintain Privileged Identity Management (PIM) and Privileged Access Management (PAM) to provide just-in-time (JIT) access and enforce the principle of least privilege. - Ensure the proper configuration and integration of various authentication protocols, including SAML, OAuth, OIDC, and SCIM for application and service provisioning. - Secure Bring Your Own Device (BYOD) and other device access by implementing device-based access policies and configurations.