Microsoft Security Engineer

Job TypeHybrid

Skills RequiredAzure

LocationLos Angeles, CA

SalaryNo salary information was found.

Date Posted July 16, 2025

Uvcyber

UltraViolet Cyber is seeking a Microsoft Security Engineer to enhance enterprise security through advanced authentication and endpoint security measures. This role requires onsite presence in Los Angeles, CA, three days a week.

Job description

What You'll Do: - Certificate Authority (CA) System Enhancement: - Design and implement improvements to the internal CA infrastructure to support secure, certificate-based communication for digital services. - Automate certificate lifecycle management and enforce certificate issuance policies. - Directory Services Security: - Strengthen Active Directory (AD) and Azure AD environments using certificate-based authentication. - Implement and manage LDAP signing and Channel Binding Tokens (CBTs) to prevent man-in-the-middle attacks. - Endpoint Security & Logging: - Enforce PowerShell logging across all endpoints to improve auditability and threat detection. - Collaborate with endpoint management teams to ensure consistent policy deployment and compliance. - Authentication Modernization: - Integrate and manage advanced authentication methods including Multi-Factor Authentication (MFA), smart cards, and FIDO2-compliant hardware security keys. - Support conditional access policies and identity protection strategies in Microsoft Entra ID (formerly Azure AD). - Collaboration & Documentation: - Work closely with infrastructure, identity, and compliance teams to align security initiatives with business needs. - Maintain detailed documentation of configurations, policies, and procedures. What You've Done: - 5+ years of experience in Microsoft security engineering or infrastructure roles. - Deep understanding of Active Directory, PKI, and certificate-based authentication. - Hands-on experience with LDAP, CBTs, and secure channel configurations. - Proficiency in PowerShell scripting and Group Policy management. - Experience with Microsoft Entra ID, Intune, and Defender for Endpoint. - Familiarity with security frameworks such as NIST, CIS, or ISO 27001. What We Offer: - 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed - Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment) - Group Term Life, Short-Term Disability, Long-Term Disability - Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness - Participation in the Discretionary Time Off (DTO) Program - 11 Paid Holidays Annually

Requirements

• 5+ years of experience in Microsoft security engineering or infrastructure roles.

• Deep understanding of Active Directory, PKI, and certificate-based authentication.

• Hands-on experience with LDAP, CBTs, and secure channel configurations.

• Proficiency in PowerShell scripting and Group Policy management.

• Experience with Microsoft Entra ID, Intune, and Defender for Endpoint.

• Familiarity with security frameworks such as NIST, CIS, or ISO 27001.

• Experience in automating certificate lifecycle management.

• Ability to implement and manage LDAP signing and Channel Binding Tokens.

• Experience in enforcing endpoint security policies.

• Strong collaboration skills to work with infrastructure, identity, and compliance teams.

Similar Jobs

Enviva

Sep 12, 2025