Microsoft 365 Engineer
We are seeking a Microsoft 365 security and compliance expert with deep hands-on experience in Microsoft Defender, Microsoft Purview, and the Microsoft 365 Admin Center. You will design, implement, and optimize security and compliance capabilities across Microsoft 365, translating risk and regulatory requirements into enforceable technical controls. This role requires strong analytical skills, disciplined execution, and the ability to operate as both a technical authority and a pragmatic advisor to IT and security stakeholders.
Utrecht (NL)
Hosting & Core IT
English
€54000 - €90000
Key about your responsibilities
Microsoft 365 Admin Center (Tenant Administration & Service Operations)
- Own and optimize Microsoft 365 tenant administration via the Microsoft 365 Admin Center across core workloads (Exchange, SharePoint, OneDrive, Teams, and related admin portals).
- Manage user and group lifecycle operations, licensing strategy, service health monitoring, and incident communication.
- Define and maintain tenant-wide configuration standards, governance guardrails, and administrative operating procedures.
- Oversee administrative roles and access models (least privilege), including role assignment reviews and privileged access controls where applicable.
- Drive service readiness and change management: feature releases, Message Center review, impact analysis, stakeholder communications, and rollout planning.
- Troubleshoot Microsoft 365 service issues using service health telemetry, audit logs, and diagnostic tooling; coordinate with Microsoft support as needed.
- Produce high-quality documentation: tenant configuration baselines, runbooks, operational playbooks, and escalation procedures.
Microsoft Defender (Security Engineering & Operations)
- Architect, deploy, and optimize Microsoft Defender solutions, including policy and control baselining.
- Implement and tune Defender security controls such as endpoint protection, identity protection, email and collaboration protection, and cloud app security monitoring (as applicable).
- Develop detection and response use-cases, triage workflows, alert tuning, and incident response playbooks.
- Conduct root-cause analysis of security incidents and drive remediation and hardening measures.
- Integrate Defender telemetry with SIEM/SOAR (e.g., Microsoft Sentinel) and standardize operational reporting (KPIs/KRIs).
Microsoft Purview (Compliance, Information Protection & Governance)
- Design and deploy information protection and compliance capabilities (e.g., sensitivity labeling, encryption, DLP, retention).
- Implement data governance and lifecycle management aligned to business and legal requirements.
- Configure and maintain compliance policies for Microsoft 365 workloads (Exchange, SharePoint, OneDrive, Teams).
- Support eDiscovery, audit, insider risk and information barrier use-cases (where applicable).
- Ensure controls are measurable, auditable, and aligned with relevant frameworks (e.g., ISO 27001, NIST, GDPR).
Architecture, Delivery & Stakeholder Management
- Translate business risk and regulatory requirements into technical designs, implementation plans, and operational controls.
- Lead or support migrations and security uplift initiatives, ensuring minimal disruption and strong change management.
- Provide 3rd line support and act as escalation point for complex Microsoft 365 security/compliance and tenant administration issues.
- Coach and upskill internal teams; define standards and guardrails for secure-by-default configurations.
Key about you
- Bachelor’s or Master’s degree in Computer Science, Information Security, Engineering, or a related discipline (or equivalent experience).
- 5+ years of experience in Microsoft 365 security, compliance, and tenant administration (or closely related).
- Proven, hands-on expertise in:
- Microsoft 365 Admin Center operations (tenant governance, licensing, service health, admin roles, workload administration)
- Microsoft Defender (Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps / Defender XDR as applicable)
- Microsoft Purview (Sensitivity labels, DLP, retention, audit, eDiscovery, compliance reporting)
- Strong analytical problem-solving skills; ability to diagnose issues across identity, endpoint, messaging, collaboration, and data governance.
- Experience implementing controls at scale using automation (PowerShell, Microsoft Graph, policy-driven configuration).
- Microsoft certifications such as:
- MS-102 (Microsoft 365 Administrator)
- SC-100 (Cybersecurity Architect)
- SC-200 (Security Operations Analyst)
- SC-400 (Information Protection Administrator)
- Experience with Microsoft Sentinel and KQL.
- Familiarity with security baselines, Zero Trust architecture, and Secure Score / Compliance Score improvement programs.
- Experience with Intune device management and endpoint compliance alignment (preferred).
This is your future work environment
Hiring proces
1
Application
Share your CV and we’ll review your background to see how your skills match our team.
2
Informal phone call
Get to know each other, discuss your motivation and learn what it’s like to work at Keylane.
3
First interview
Meet your future hiring team to talk about your experience and what drives you.
4
Second interview
Dive deeper into your skills with a case or technical talk and meet more of the team.
5
Job offer
If we’re both excited, we’ll make you an offer and discuss start date and onboarding.
Keylane Alumni Drinks
Holi Celebration: Keylane Welcomes the Arrival of Spring
Keylane Playground: Pub Quiz
Skilane 2024: SaaSisfaction on the Slopes!
Keylane introduces ‘Inclusion days’ in place of fixed holidays
Life at Keylane: Sports, Social Events, and Activities That Bring Us Together
