We are looking for a SME for Microsoft 365 security and compliance stack and need hands-on help across three core tracks—device management, identity & access, and data protection. Th responsibility includes managing complete Microsoft producitivity tools and device management tools.
Device Management
- Stand up Microsoft Intune from a clean slate, enroll all Windows, macOS and mobile endpoints, and apply best-practice configuration profiles.
- Deploy Microsoft Defender for Endpoint and verify real-time protection, attack surface reduction rules, and automated remediation.
- Build a secure access layer that leverages Microsoft Global Secure Access / VPN / ZTNA so every device is tunnelled through a least-privilege path.
Identity & Access with Entra ID
- Enforce MFA everywhere and craft Conditional Access policies that balance security with user experience.
- Rationalise user and group structure; automate memberships where possible.
- Configure access reviews and deliver reporting that satisfies audit requirements.
Data Protection
- Roll out Microsoft Purview DLP policies for email, OneDrive and SharePoint, including test mode, tuning, and full production enforcement.
- Surface incidents in Defender XDR and pipe logs to Microsoft Sentinel for ongoing monitoring.
Acceptance criteria
1. All endpoints report compliant status in Intune and Defender.
2. Conditional Access blocks non-compliant or risky sign-ins while allowing approved scenarios.
3. DLP alerts trigger in Purview and appear in Defender XDR/Sentinel dashboards.
4. A hand-over document details policies, scripts, and next steps.
This may need set-up from scratch starting from Microsoft tenant account; you bring the expertise to configure, test, and document the end-to-end solution.
Pay: ₹15,000.00 - ₹30,000.00 per month
Benefits:
- Flexible schedule
- Work from home
Work Location: Hybrid remote in Mumbai, Maharashtra (Mumbai)
