Defender Performance Troubleshooter & Security Policy Configurator

This is a contract position. It is a 100% remote position.

What will you do in this role?

• Defender Performance Troubleshooting
• Diagnose and resolve performance issues related to Microsoft Defender.
• Review and interpret Client Analyzer logs.
• Utilize tools such as ProcMon, MpPerformanceRecording, and similar for root cause analysis.
• Recommend tuning strategies for Defender configurations to minimize resource impact.
• Policy Configuration & Deployment
• Configure and deploy security policies via Intune, MECM, and Ansible.
• Develop and execute testing methodologies for deployments.
• Create documentation and adhere to established enterprise processes.
• Network & Telemetry Troubleshooting
• Perform network diagnostics, including firewall analysis and Splunk queries for traffic validation.
• Identify and resolve telemetry gaps or inconsistencies across endpoints.
• Compliance & Governance
• Review and maintain security exclusions between test and production environments.
• Ensure compliance with organizational and regulatory standards.

What skills should you have for this position?

• Microsoft Security Stack Expertise
• Hands-on experience with Defender for Endpoint, Microsoft Sentinel, and Azure/Defender for Cloud.
• Ability to use advanced hunting queries (KQL)
• Security Posture & Risk Assessment
• Conduct assessments of current security posture.
• Review penetration test findings and recommend remediation strategies.