Job Title: Endpoint Security Manager – Microsoft Defender

Location: Mumbai, Bangalore, Delhi NCR

Experience: 5+ years

Role Overview:

We are looking for an experienced Endpoint Security Manager to lead the deployment, management, and optimization of Microsoft Defender for Endpoint within our organization. This role will play a key part in safeguarding endpoints against advanced threats, improving detection capabilities, and streamlining incident response efforts. The ideal candidate will bring deep technical expertise, operational maturity, and the ability to drive collaboration across IT and security functions.

Key Responsibilities:

• Design, implement, and maintain Microsoft Defender for Endpoint across all organizational endpoints.
• Monitor endpoint security events, investigate threats, and coordinate incident response activities using Microsoft 365 Defender and Microsoft Sentinel.
• Perform advanced threat hunting and create custom detections to identify evasive threats targeting endpoints.
• Work closely with the SOC, IT infrastructure, and cloud teams to ensure seamless integration of Defender tools and policies.
• Tune detection rules and response actions to reduce false positives and improve alert fidelity.
• Conduct endpoint security assessments and remediation planning using insights from Microsoft Secure Score.
• Create and maintain SOPs for endpoint incident handling, response workflows, and threat containment strategies.
• Participate in triage, forensic analysis, and root cause investigation of endpoint-related security incidents.
• Stay up to date on evolving threats, Microsoft Defender feature enhancements, and industry best practices.
• Develop security reports and executive presentations with detailed endpoint risk analysis and remediation status.

Preferred Qualifications:

• Microsoft Certifications (preferred):
• SC-200: Microsoft Security Operations Analyst
• AZ-500: Azure Security Engineer Associate
• MD-102: Endpoint Administrator (nice to have)
• Experience managing endpoints in hybrid environments (Azure AD + On-Prem Active Directory).
• Familiarity with compliance frameworks like ISO 27001, NIST, etc.
• Experience with automated response via SOAR platforms and security orchestration.

Required Skills:

• Deep technical knowledge of Microsoft Defender for Endpoint and related M365 security tools.
• Strong analytical and problem-solving capabilities.
• Ability to lead security investigations and drive resolution.
• Excellent communication skills and stakeholder management.
• Skilled in developing professional documentation and detailed reporting (including PowerPoint presentations).