Cloud Solution Architect – Threat Protection

Join to apply for the Cloud Solution Architect – Threat Protection role at Invoke

Base pay range: $/yr – $/yr

Location:

Houston, Texas (Remote)

Invoke is a consulting firm specialized in Identity, Threat Protection, Data Security, Endpoint Management, and AI. As a Microsoft System Integrator with a Managed, specialized level partnership status, Invoke delivers a wide array of professional services to complement customers’ current or future investments in Microsoft technologies.

You will work with business and IT stakeholders to assess current security posture, design target operating models, and deploy Microsoft Defender XDR, Microsoft Sentinel, Security Copilot, and Vulnerability Management solutions across cloud and hybrid environments. The ideal candidate combines deep technical expertise with practical governance design and change management skills.

• Advanced Threat Protection
  :
  Implement machine learning‑driven anomaly detection, threat intelligence via Microsoft Security Graph, and Indicators of Compromise (IoC) analysis.
• Prevention & Hardening
  :
  Deploy proactive malware blocking, Attack Surface Reduction (ASR), endpoint security, exploit protection, network protection, and Cloud Security Posture Management (CSPM) using Microsoft Defender for Cloud.
• Identity & Access Management
  :
  Design RBAC/ABAC models, enable Just‑In‑Time (JIT) access, integrate Privileged Access Management (PAM), enforce Separation of Duties (SoD), and access review attestation.
• Extended Detection & Response (XDR):
  Configure Microsoft Defender XDR for cross‑domain correlation across endpoints, identities, email, and cloud apps; implement automated investigation and remediation with AI‑driven playbooks.
• Identity Protection
  :
  Enable risk‑based Conditional Access with Microsoft Entra , mitigate credential theft, and deploy phishing‑resistant authentication methods.
• Security Operations & Response
  :
  Utilize Microsoft Sentinel for log aggregation, advanced threat detection, automated response workflows, and proactive threat hunting.
• Vulnerability & Exposure Management
  :
  Implement continuous scanning for CVEs and misconfigurations and provide actionable patch recommendations.
• Integration & Automation
  :
  Deliver a unified security experience through the Microsoft Defender Portal and leverage Security Copilot for AI‑assisted incident analysis, response guidance, and automation.

• A minimum of 5 years of experience in IT professional services delivery.
• A minimum of 2 years of experience as an Architect or Consultant for Microsoft Purview.
• Highly motivated individual who exercises diligence in their work and an attitude of willingness to be successful.
• Relationship building abilities.
• Demonstrate confident presentation, negotiation, and communication skills.
• Strong organizational and time management skills with the ability to work autonomously or with a team.
• Excellent written and verbal skills with proficiency in all relevant Microsoft Data Security & Governance solutions.
• Team player willing to assist peers to increase collective agility and success.
• Meticulously attentive to details.

• Proven design, planning and implementation experience with Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Microsoft Defender for Identity, Microsoft Defender for Cloud Apps (CASB), Microsoft Defender for Cloud, Microsoft Sentinel, Microsoft Entra , and Microsoft Security Copilot.
• Experience working with implementing the Microsoft Defender Suite, Entra , Sentinel, and Security Copilot.
• Experience working with customer Security teams to help provide guidance in moving to cloud‑based management.
• Experience working with customers in adopting new technologies to include Organizational Change Management by developing end‑user, help desk, and stakeholder communications.
• Experience working with Microsoft’s scripting (Power Shell) and low code with Power Platform to extend and customize capabilities.

• Experience in design, implementation, and adoption of the Microsoft Defender Suite, including Defender for Cloud.
• Experience in design, implementation, and adoption…