M365 Cloud Security & Compliance Analyst

Job Title

Senior Cybersecurity & Compliance Specialist III

REPKON USA

IT

Tampa, FL – On Site

Full-Time

We are seeking a highly skilled and motivated Senior Microsoft 365 Cloud Security & Compliance Specialist to join our growing IT and cybersecurity team. This individual will be responsible for implementing, managing, and monitoring Microsoft 365 and Azure security solutions, with a strong focus on compliance frameworks such as NIST 800-171 and CMMC Level 2. The ideal candidate has 6+ years of hands-on experience in M365 cloud security, endpoint protection, and compliance in a defense contractor or similarly regulated environment.

• Security Operations & Architecture
• Configure and manage Microsoft Intune for secure endpoint management, application protection policies, and device compliance
• Develop and manage Microsoft Sentinel workbooks, analytics rules, and playbooks for security incident response and automation
• Implement Azure AD Conditional Access, MFA policies, role-based access control (RBAC), and Identity Protection

• Manage and audit Azure Security Center, Microsoft Purview, Compliance Manager, and M365 Security Center
• Lead and conduct regular security baselines, risk assessments, and vulnerability scans
• Create and maintain policies for data loss prevention (DLP), information protection, and compliance reporting
• Experience in Azure networking include creating VMs, AVD, NSG.

• Support internal/external audits and assessments related to NIST 800-171, CMMC, and DFARS
• Maintain compliance evidence repositories and remediation documentation
• Assist in SSP, POA&M, and security control implementation documentation

• Work with IT, Dev Ops, and Compliance teams to support secure deployment practices
• Investigate security incidents and assist in root cause analysis and response
• Develop SOPs, runbooks, and training materials for internal security awareness

• 6+ years of hands-on experience with Microsoft 365 and Azure security tools
• Deep understanding of Microsoft Intune, Defender XDR, Azure AD, and Microsoft Sentinel
• Familiarity with Microsoft Purview, Compliance Manager, and M365 DLP
• Knowledge of NIST SP 800-171 and CMMC Level 2 requirements
• Experience with regulatory/compliance documentation (SSP, POA&M)
• Excellent troubleshooting and analytical skills
• Bachelor's degree in Cybersecurity, Information Technology, or related field

• Microsoft certifications such as:
• SC-300 (Identity and Access Administrator)
• SC-200 (Security Operations Analyst)
• MS-500 (Security Administrator)
• AZ-500 (Azure Security Engineer)
• Experience with GCC High cloud environments

• Work Environment: Office work environment.
• Background Investigation / Drug Screen/ US Person: Required.

REPKON USA reserves the right to modify job descriptions in response to changing business needs.

We are proud to be an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. Employment decisions are made without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other protected status in accordance with applicable law.