ETT CareerMove
Website:
ettcareermove.com
Job details:
We are seeking an experienced
M365 Defender / XDR Engineer to design, implement, and operate Microsoft s extended detection and response (XDR) platform across endpoint, identity, email, and cloud applications. The role focuses on security engineering, threat detection, incident response, and platform optimization within large enterprise environments.
Work location : Bengaluru (hybrid mode)
Education: Any full time graduate
Key Responsibilities
- Configure, manage, and optimize the Microsoft 365 Defender suite: Defender for Endpoint, Defender for Identity, Defender for Office 365, and Defender for Cloud Apps.
- Lead investigation and response to complex security incidents using XDR correlations, advanced hunting, and threat analytics.
- Design and maintain security policies including AV, EDR, ASR, email protection, identity protection, and SaaS controls.
- Perform advanced hunting using KQL across M365 Defender data sources and drive proactive threat detection.
- Integrate M365 Defender with SIEM/SOAR platforms (Microsoft Sentinel, Splunk) for centralized visibility and automated response.
- Manage Defender Vulnerability Management, posture improvement, and exposure reduction initiatives.
- Support Zero Trust security architecture aligned with Microsoft Cybersecurity Reference Architecture (MCRA).
- Develop PowerShell-based automation, SOPs, LLDs, and operational runbooks.
- Collaborate with SOC, IR, IAM, and IT teams to improve detection coverage and response maturity.
- Provide technical mentorship and support continuous improvement initiatives.
Required Skills & Experience
- 5 8+ years in security engineering or SOC L3 roles within large enterprise environments.
- Strong hands-on experience with the Microsoft 365 Defender XDR platform.
- Deep understanding of endpoint, identity, email, and cloud threat vectors.
- Proficiency in Advanced Hunting (KQL) and incident response workflows.
- Experience with Microsoft Sentinel or Splunk for SIEM/SOAR integration.
- Solid knowledge of malware protection, Zero-Day handling, and attack surface reduction.
- Working knowledge of XDR, MITRE ATT&CK, and threat lifecycle management.
- Strong documentation, stakeholder communication, and client-facing skills.
Click on Apply to know more.