- Data Loss Prevention (DLP) ( Intune )
- Design and implement DLP policies within Azure, Intune (MDM/MAM) and Microsoft365 to prevent unauthorized data leakage.
Monitor and analyze DLP incidents, providing timely remediation and recommendations.
Monitor & Manage MDM & MAM deployments & compliance from Intune.
- Endpoint Security ( MS Defender )
- Manage Microsoft Defender for Endpoint, ensuring comprehensive protection for all end-user devices.
- Implement and fine-tune attack surface reduction rules to minimize risk.
Monitor, Investigate and respond to security incidents using EDR capabilities.
Perform a comprehensive review of Endpoint Security settings, and suggest improvements.
- Cloud Security ( Azure )
- Secure Azure resources, including virtual machines, databases, and storage accounts.
- Configure Azure Security Center policies and alerts.
- Email Security (ProofPoint)
- Administer Proofpoint mail security gateway to protect against email-based threats.
- Monitor email traffic for phishing attempts, malware, and other malicious content.
Provide guidance on best practices for secure email communication.
- Threat Intelligence and Incident Response:
- Stay informed about the latest cybersecurity threats and vulnerabilities.
- Develop and maintain incident response playbooks.
- Participate in security incident investigations and coordinate remediation efforts.
- Policy and Compliance:
- Assist in defining and enforcing security policies aligned with industry standards and regulations.
- Conduct periodic security assessments and audits.
Collaborate with legal and compliance teams to address data privacy requirements.