Microsoft Security Engineer
Role: Security EngineerCompany: Uvcyber
Job description
What You'll Do: - Certificate Authority (CA) System Enhancement: - Design and implement improvements to the internal CA infrastructure to support secure, certificate-based communication for digital services. - Automate certificate lifecycle management and enforce certificate issuance policies. - Directory Services Security: - Strengthen Active Directory (AD) and Azure AD environments using certificate-based authentication. - Implement and manage LDAP signing and Channel Binding Tokens (CBTs) to prevent man-in-the-middle attacks. - Endpoint Security & Logging: - Enforce PowerShell logging across all endpoints to improve auditability and threat detection. - Collaborate with endpoint management teams to ensure consistent policy deployment and compliance. - Authentication Modernization: - Integrate and manage advanced authentication methods including Multi-Factor Authentication (MFA), smart cards, and FIDO2-compliant hardware security keys. - Support conditional access policies and identity protection strategies in Microsoft Entra ID (formerly Azure AD). - Collaboration & Documentation: - Work closely with infrastructure, identity, and compliance teams to align security initiatives with business needs. - Maintain detailed documentation of configurations, policies, and procedures. What You've Done: - 5+ years of experience in Microsoft security engineering or infrastructure roles. - Deep understanding of Active Directory, PKI, and certificate-based authentication. - Hands-on experience with LDAP, CBTs, and secure channel configurations. - Proficiency in PowerShell scripting and Group Policy management. - Experience with Microsoft Entra ID, Intune, and Defender for Endpoint. - Familiarity with security frameworks such as NIST, CIS, or ISO 27001. What We Offer: - 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed - Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment) - Group Term Life, Short-Term Disability, Long-Term Disability - Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness - Participation in the Discretionary Time Off (DTO) Program - 11 Paid Holidays Annually
Requirements
• 5+ years of experience in Microsoft security engineering or infrastructure roles.
• Deep understanding of Active Directory, PKI, and certificate-based authentication.
• Hands-on experience with LDAP, CBTs, and secure channel configurations.
• Proficiency in PowerShell scripting and Group Policy management.
• Experience with Microsoft Entra ID, Intune, and Defender for Endpoint.
• Familiarity with security frameworks such as NIST, CIS, or ISO 27001.
• Experience in automating certificate lifecycle management.
• Ability to implement and manage LDAP signing and Channel Binding Tokens.
• Experience in enforcing endpoint security policies.
• Strong collaboration skills to work with infrastructure, identity, and compliance teams.
SHARE THIS OPENING
Similar jobs
Job Type
Hybrid role
Skills required
Azure
Location
Los Angeles, CA
Salary
No salary information was found.
Date Posted
July 16, 2025
Similar jobs
Uvcyber
UltraViolet Cyber is seeking a Microsoft Security Engineer to enhance enterprise security through advanced authentication and endpoint security measures. This role requires onsite presence in Los Angeles, CA, three days a week.
