What we’re looking for
We are seeking a highly skilled Microsoft Security Engineer to join our Engineering team in the Philippines. This role is ideal for an experienced security professional who will be responsible for the implementation, management, and optimization of Microsoft security solutions across our Microsoft 365 customer base.
The role will focus on the deployment and maintenance of Microsoft Endpoint Detection and Response (EDR), vulnerability and patch management, and Microsoft Sentinel, ensuring our clients’ security postures remain robust and compliant. You will work closely with Bedroq’s UK and Philippines-based teams, requiring excellent technical communication skills and a proactive approach to problem-solving.
Required Skills & Experience
· Minimum 5-7 years’ experience in IT security with a strong focus on Microsoft security solutions.
· Hands-on experience with Microsoft Defender for Endpoint, Defender for Cloud, Defender for Identity, and Microsoft Sentinel.
· Strong knowledge of vulnerability management (identification, prioritization, remediation).
· Familiarity with SIEM and SOAR platforms, particularly Microsoft Sentinel.
· Proficiency in writing Kusto Query Language (KQL) queries for advanced analytics and threat hunting.
· Incident response and threat detection expertise.
· Experience securing Microsoft 365 environments, including Exchange Online, SharePoint, and Teams.
· Knowledge of zero-trust security models, identity protection, and conditional access policies.
· Experience in a Managed Service Provider (MSP) environment is highly desirable.
· Proficiency in scripting and automation (PowerShell, JSON, etc.) is a plus.
Preferred Certifications
· Microsoft Certified: Security Operations Analyst Associate (SC-200) (strongly preferred)
· Microsoft Certified: Cybersecurity Architect Expert (SC-100)
· Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900) (advantageous)
· Other security certifications (e.g., CISSP, CEH, CompTIA Security+) are a plus.
About the role
As a Microsoft Security Engineer, you will be responsible for securing Microsoft 365 environments by deploying, configuring, and maintaining advanced security solutions. This is a customer-facing role, requiring you to engage with clients, understand their security needs, and implement tailored solutions.
You will work alongside project managers and internal teams to deliver high-quality security implementations, ensuring compliance with industry best practices and evolving threat landscapes.
This is an office-based role that supports knowledge sharing and collaboration with our Engineering, Service Desk and Support Operations teams, ensuring that security initiatives are aligned with business and customer objectives.
Key Responsibilities
· Design, implement, and manage Microsoft security solutions across customer environments.
· Deploy, configure, and optimize Microsoft EDR (Defender for Endpoint), Defender for Identity, and Defender for Office 365.
· Lead vulnerability management initiatives, including Microsoft Defender Vulnerability Management (MDVM), Nessus scans, Secure Score monitoring, risk assessment, and remediation tracking.
· Implement, manage, and maintain Microsoft Sentinel for Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR).
· Monitor and analyse security alerts to detect, investigate, and respond to threats.
· Develop and document security policies, configurations, and best practices for customers.
· Work with Microsoft security tools such as Defender for Cloud, Defender for Office 365, and Defender for Identity.
· Implement and manage deception techniques (e.g., honeypots, decoy accounts) to enhance early threat detection.
· Support security audits, risk assessments, and compliance initiatives.
· Provide technical support and guidance to customers on Microsoft security best practices.
· Manage automation workflows and SOAR playbooks within Microsoft Sentinel.
· Collaborate with internal teams to integrate security into wider IT solutions.
· Assist in security awareness training initiatives, including phishing simulations, user education, and reporting.
About you
Excellent verbal and written English communication skills – able to articulate complex security concepts clearly.
- Excellent verbal and written English communication skills – able to clearly explain security concepts to technical and non-technical stakeholders.
- Proactive and detail-oriented – takes initiative in identifying and resolving security risks.
- Strong analytical and troubleshooting skills – able to investigate and respond to security incidents effectively.
- Able to work across multiple time zones, coordinating with UK and PH teams.
- Highly organized – able to manage multiple security projects and priorities simultaneously.
- Committed to staying updated on cybersecurity trends, vulnerabilities, and best practices.
- Flexible approach to working hours, willing to adjust for project deadlines or security incidents.
Additional Information
- Location: Office-based in the Ortigas, Manilla.
- Working Hours: Requires flexibility to align with UK time zones.
- Compensation and Benefits: Competitive salary based on experience, HMO coverage, 13th-month pay, and opportunity for career progression.