Microsoft 365 Security Engineer

Description:

Medison offers hope to patients suffering from rare and severe diseases by forming partnerships with emerging biotech companies to accelerate access to highly innovative therapies in international markets.

As the creator and leader of the global partnership category in the pharma industry, we strive to be Always Ahead and work relentlessly to bring therapy to patients in need, no matter where they live.

Our values are at the core of every action we take, and we are committed to going above and beyond to benefit the patients we serve.

We are a dynamic, fast-paced company operating in over 34 countries on 5 continents. We are looking for out-of-the-box thinkers, people who are passionate, caring, agile, and adaptive, to join us on our mission. If you are looking to make a difference in people's lives, we invite you to join us!

We are looking for Microsoft 365 Security Engineer to lead the implementation and continuous improvement of Microsoft security and compliance capabilities across the Microsoft 365 environment. The role focuses especially on Microsoft Purview and Microsoft Defender for Cloud Apps, and also covers Microsoft Defender for Office 365, Security for identity, Entra ID security controls, and security features across Exchange Online and collaboration services. You will translate requirements into technical design and configuration, implement and tune policies, rollout changes safely, troubleshoot complex issues, and document solutions and operational procedures. You will work closely with IT and System teams to ensure stable integrations, minimal business disruption, and measurable risk reduction.

· Lead end to end implementation and ongoing improvement of Microsoft 365 security and compliance controls.

· Implement and operate Microsoft Purview, including sensitivity labels and DLP, and support additional compliance capabilities as needed.

· Implement and operate Microsoft Defender for Cloud Apps CASB, including cloud discovery, governance controls, and policy enforcement.

· Implement and tune Microsoft Defender for Office 365 protections for phishing, malware, and impersonation threats.

· Support identity driven security controls with Entra ID, including Conditional Access concepts and tenant security posture improvements.

· Improve Exchange Online security posture, mail flow protections, and related configurations.

· Create technical documentation, runbooks, and change plans, and provide operational support and troubleshooting.

· Partner with internal teams and stakeholders to plan rollouts, reduce false positives, and maintain business continuity.

· Experience in securing Microsoft SharePoint Online, including configuration of access controls, data protection policies, and compliance settings.

· 5–8 years of experience in cloud, IT systems, and security roles within global environments — including approximately 3 years as a System Administrator and 2–3 years implementing security projects (must).

· Experience from Integration companies- Advantage

· Strong hands-on experience implementing Microsoft 365 security solutions end to end.

· Strong understanding of Microsoft 365 E5 security and compliance capabilities and licensing scope.

· Proven implementation experience of Microsoft Purview.

· Proven implementation experience with MS Defender for Cloud Apps (CASB, Defender for Office 365, Defender for identity etc.).

· Strong understanding of Entra ID security, Intune and Conditional Access concepts.

· Strong understanding of IT and System domains, including Active Directory, and core enterprise infrastructure tools.

· Strong understanding of Exchange Online security and mail flow basics.

· Strong troubleshooting skills across tenant, endpoint, and network dependencies.

· Experience writing clear technical documentation and runbooks.

Advantage:

· Relevant certifications such as SC 400, SC 200, AZ 500, MS 102.