Microsoft Cybersecurity Architect

Role: Security EngineerCompany: TekStream Solutions

Job description

Microsoft Cybersecurity Architect Location:Dunwoody, GA (hybrid) US Citizenship required for eligibility to work across our customer base. • ***NO THIRD PARTY RECRUITERS**** We are seeking a Microsoft Cybersecurity Architect to lead the design and delivery of multi-tenant Managed Security Services (MSSP) and Managed Detection & Response (MDR) solutions built on the Microsoft security ecosystem. This role requires deep technical hands-on experience with Microsoft Sentinel, Entra, Defender, and Lighthouse, as well as the ability to integrate third-party tools and custom connectors. Key Responsibilities: • Design, build, and optimize multi-tenant MDR/MSSP environments leveraging: • Microsoft Sentinel (KQL-based rules, workbooks, automation, hunting) • Defender for Endpoint, Identity, Cloud Apps, Office 365 • Microsoft Entra (Azure AD) for identity security and conditional access • Azure Lighthouse for delegated resource and tenant management • Create and manage custom data connectors for ingesting logs from: • On-prem and non-Microsoft cloud sources (e.g., AWS, Palo Alto, CrowdStrike) • API-based integrations using Logic Apps, Functions, or custom code (PowerShell/Python) • Collaborate with service delivery and SOC teams for them to develop: • Operational workflows and runbooks for alert triage and incident response • Threat detection content mapped to MITRE ATT&CK • Onboarding playbooks, customer runbooks, and documentation Required Experience: • Microsoft Sentinel: • Creating and tuning analytics rules using KQL • Developing and maintaining workbooks, playbooks, and custom tables • Experience with ARM templates, Bicep, or Terraform for scripting / deployment • Microsoft Defender Suite: • Experience configuring and tuning Defender for Endpoint, Cloud, Identity • Using advanced hunting queries for investigations and enrichment • Microsoft Entra / Azure AD: • Implementing conditional access, PIM, and identity protection policies • Integrating Entra ID logs and signals into Sentinel for threat detection • Azure Lighthouse: • Onboarding and managing multiple tenants in a centralized operational model • Delegated RBAC and Log Analytics workspace management • Custom Integration and Automation: • Developing connectors for non-native data sources (REST API, Syslog, Event Hubs) • Writing PowerShell or Python scripts for automation and enrichment Preferred Qualifications: • Azure Solutions Architect, SC-100, SC-200, or related Microsoft certifications • Familiarity with MITRE ATT&CK, NIST 800-53, and Zero Trust principles • Experience with data governance, compliance, and privacy regulations (GDPR, HIPAA) • Understanding of multi-cloud security, especially AWS and Google Cloud integrations • Prior experience in building MSSP/MDR offerings for a security services provider Soft Skills & Traits: • Excellent communication skills with technical and non-technical stakeholders • Ability to translate technical designs into repeatable service offerings • Problem-solving mindset with a focus on resilience and scalability

Requirements

• US Citizenship required for eligibility to work across our customer base

• Creating and tuning analytics rules using KQL

• Developing and maintaining workbooks, playbooks, and custom tables

• Experience with ARM templates, Bicep, or Terraform for scripting / deployment

• Microsoft Defender Suite:

• Experience configuring and tuning Defender for Endpoint, Cloud, Identity

• Using advanced hunting queries for investigations and enrichment

• Microsoft Entra / Azure AD:

• Implementing conditional access, PIM, and identity protection policies

• Integrating Entra ID logs and signals into Sentinel for threat detection

• Onboarding and managing multiple tenants in a centralized operational model

• Delegated RBAC and Log Analytics workspace management

• Custom Integration and Automation:

• Developing connectors for non-native data sources (REST API, Syslog, Event Hubs)

• Writing PowerShell or Python scripts for automation and enrichment

• Excellent communication skills with technical and non-technical stakeholders

• Ability to translate technical designs into repeatable service offerings

• Problem-solving mindset with a focus on resilience and scalability

SHARE THIS OPENING

Similar jobs

Microsoft Azure Security Consultant

Jul 14, 2025

Experis

Denver, Colorado

Azure

Experis is seeking a Microsoft Azure Security Consultant in Denver, Colorado, to support critical security assessments within the Information Security Team. The role requires strong analytical skills and extensive Azure experience to enhance cloud security.

Sr. Engineer, Microsoft Information Protection

Jul 10, 2025

INSPYR Solutions

Miami, Florida

The Sr. Engineer, Microsoft Information Protection will oversee data security strategies and ensure compliance with corporate policies. This role requires extensive experience in data protection technologies and regulatory standards.

Cybersecurity Threat Modelling Architect (Azure Cloud)

Jul 12, 2025

Publicis Groupe

Chicago, Illinois

Publicis Groupe is seeking a Cybersecurity Threat Modelling Architect with expertise in Azure Cloud to enhance security architecture and threat modeling processes. The role involves collaboration with cross-functional teams to identify and mitigate security threats.

Save job

Apply now

Job Type

Fulltime role

Skills required

Azure, Python

Location

Dunwoody, Georgia

Salary

No salary information was found.

Date Posted

June 21, 2025

Save job Apply now