×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Cloud Computing

Microsoft Cloud Security Lead & SOAR Architect

Job in Buffalo, Erie County, New York, 14201, USA
Listing for: WSP USA
Full Time position
Listed on 2026-06-11
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Cloud Computing
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

Position Summary

We are seeking a highly skilled and advanced technical cybersecurity professional, preferably a Microsoft MVP (Most Valuable Professional) to our Global Security Operations and Engineering team. The successful candidate will lead technical security initiatives, with a particular focus on Microsoft Cloud Security covering the full scope, i.e., to plan (architect), implement (build), and manage the security platforms and tools in use at WSP, especially the SOAR capabilities, including automation for the SOC using Microsoft security tools (Microsoft Sentinel, Defender, etc).

An important part of this role would be to coach and build the overall knowledge and capabilities within the team. And so, naturally, the incumbent would be an integral member of the team and would also get some good insight into other technology platforms, e.g. AD auditing solutions, PAM, our Threat Intelligence platforms etc. This position can be located at any WSP USA office location.

Candidates MUST have:

  • Demonstrable, current, and verifiable technical skills with the Microsoft security tools, especially MS Sentinel, Defender, Logic App.

  • Robust experiences with Entra

    ID, AD, e.g., and creating and managing complex role creations, assignments and permissions

  • Experiences with Purview.

  • A proven, recent, and verifiable track record in improving and maturity existing security implementations and configurations in the Microsoft Cloud landscape

  • Substantial expertise implementing SIEM/ SOAR automations, developing and fine tuning the SIEM detection rules to reduce manual efforts, including SIEM log ingestion, connector options, and cost analysis for current and future needs

  • Solid current experiences in securing the attack landscape in a Microsoft environment, and hardening the existing systems in the enterprise hybrid landscape (end-user devices, servers, etc); skills and experiences with other vendors and services would be an added advantage

  • Substantial expertise about the overall security landscape, including Threat and Vulnerability Management, and the ability to guide on their remediation.

  • Deep knowledge of Entra

    ID, including identity protection, conditional access, zero trust architecture and advanced threat detection

  • Cyber professional at heart, tracking and mitigating emerging cyber threats against the company (e.g. zero-day exploits, APTs etc).

  • Experiences with other concepts and systems like Privileged Account Management, Key Management (certificates, keys, ciphers, etc.).

  • Ability to lead security systems integration, e.g., defining the architecture to work with ticketing systems, e.g. integrating Defender to create–manage the tickets and communications in Service Now

  • Knowledge of extracting relevant data, creating security reports etc. would be a definite advantage.

  • Solid abilities to lead and plan the architecture, deliveries, and even more importantly coach and teach other members of the technical team to high levels of technology excellence

What you can expect to do:

  • Work with a globally distributed team, taking inputs from the business, SOC, and management to roll out systems and troubleshoot (Tier-3) support for security issues

  • Lead-guide the local Service Desk/ OSS teams with knowledge bases to resolve tickets at first instance for issues relating to security software and configurations

  • Develop the automation (including playbooks, SOAR), scripts to monitor system-health, as well as management the SOC tools in use

  • Extract data from systems and build reports for management;
    Power

    BI skills would be an advantage

  • Knowledge transfer and sharing

  • Monitor and respond to feedback from the customers (employees and business stakeholders)

  • Bring a problem-solving and solutions-mindset, coordinate with the IT teams as needed

  • Finance/Budgetary Responsibilities

  • Provide feedback on tooling and identify additional needs

  • Plan for expanse of security tools to cover ongoing needs

  • Evaluation of license usage and potential growth

Required Qualifications:

  • Previous experiences in security tools and systems administration, including experience as a security administrator for security platforms

  • Knowledge and experience in SIEM and Microsoft platforms…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search