Key Responsibilities: Security Monitoring & Incident Response: Monitor and investigate security alerts using Microsoft Sentinel (SIEM/SOAR) Respond to incidents (malware, phishing, identity compromise, and data loss) Develop and refine detection rules, dashboards, and automation Conduct root cause analysis and produce incident reports Microsoft Defender Operations: Manage Defender for Endpoint, Identity, Cloud Apps, and Office 365 Investigate threats using Defender XDR and improve detection accuracy Reduce false positives and support vulnerability remediation Cloud & Identity Security (Azure): Secure Azure workloads, networks, and identities Support Zero Trust, RBAC, Conditional Access, and MFA Monitor logs and security telemetry Network Security: Manage Fortinet solutions (FortiGate, FortiAnalyzer/Manager) Investigate threats, review firewall rules, and support VPN/IDS/IPS Integrate network logs into Sentinel Playbooks & Automation: Develop and maintain incident response playbooks aligned to best practices Regularly review and improve playbooks; maintain clear documentation Vulnerability Management: Support the full lifecycle: Discovery, assessment, prioritisation, and remediation Use Defender VM and collaborate with teams to resolve risks Track and report on remediation progress Data Protection & Compliance: Support Microsoft Purview (DLP, data classification, and compliance) Monitor DLP alerts and assist with regulatory requirements (e.g. POPIA and GDPR) Continuous Improvement & Collaboration: Contribute to security policies and practices Work with cross-functional teams to strengthen security Stay updated on threats and industry trends Job Experience and Skills Required: Minimum 3 years' experience as a Security Analyst / SOC / security Experience in securing Microsoft 365 and Azure environments Certificates in CompTIA, CISSP, or similar Microsoft Certified: Security Operations Analyst Associate Microsoft Certified: Azure Security Engineer Associate Microsoft Certified: Information Protection Administrator Hands-on experience with Microsoft Sentinel (Azure Sentinel), the Microsoft Devender security suite, Microsoft Azure (IAM, networking, logging, and security controls) and Microsoft Purview (DLP, Information Protection, and Compliance Manger) Apply now!