Principal Security Consultant - Contractor

We are looking for a Principal Security Consultant to lead and manage security operations with a strong focus on Microsoft 365 security, threat protection, and data security. This is a senior hands-on role responsible for designing, implementing, and maintaining security controls across all environments, ensuring compliance, and strengthening overall security posture.

Responsibilities:

• Design, configuration, and continuously enhance Microsoft 365 security features including Microsoft Defender for Office 365, Defender for Endpoint, Azure AD Conditional Access, and Purview Compliance tools.
• Manage and optimize the organization’s email gateway solution (e.g., Microsoft Defender, Proofpoint, Mimecast), ensuring effective spam filtering, anti-spoofing, control and protection against phishing and malware threats.
• Lead the implementation, monitoring, and refinement of Data Loss Prevention (DLP) policies across endpoints, email, and cloud environments to prevent unauthorized data access and leakage.
• Administer and enforce application whitelisting policies using AppLocker, Windows Defender Application Control (WDAC), or other tools to ensure only approved software runs in the environment.
• Collaborate with IT, compliance, and leadership teams to ensure security measures align with business goals and regulatory requirements.
• Respond to and lead investigations of security incidents and develop incident response plans and actionable playbooks to enhance organizational preparedness.
• Provide technical leadership, mentorship, and guidance to security engineers and analysts, fostering professional growth and a culture of continuous improvement.

Requirements:

• Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or related discipline.
• 10+ years of hands-on experience in cybersecurity, with a focus on enterprise environments.
• Proven expertise in Microsoft 365 E5 security tools and administration.
• Strong experience managing and securing email gateways, DLP policies, and application whitelisting technologies.
• Deep understanding of endpoint protection, identity security, and threat detection and response.
• Familiarity with security standards and compliance requirements (e.g., ISO 27001, NIST, NCA, GDPR).
• Relevant certifications such as MS-500, Microsoft Certified: Cybersecurity Architect Expert, CISSP, or CISM are a plus.

Preferred Skills:

• Knowledge of PowerShell scripting and automation for security tasks.
• Background in incident response and security operations in a hybrid cloud environment.