Key Responsibilities Security Monitoring & Incident Response Monitor and investigate security alerts using Microsoft Sentinel (SIEM/SOAR) Respond to incidents (malware, phishing, identity compromise, data loss) Develop and refine detection rules, dashboards, and automation Conduct root cause analysis and produce incident reports Microsoft Defender Operations Manage Defender for Endpoint, Identity, Cloud Apps, and Office 365 Investigate threats using Defender XDR and improve detection accuracy Reduce false positives and support vulnerability remediation Cloud & Identity Security (Azure) Secure Azure workloads, networks, and identities Support Zero Trust, RBAC, Conditional Access, and MFA Monitor logs and security telemetry Network Security Manage Fortinet solutions (FortiGate, FortiAnalyzer/Manager) Investigate threats, review firewall rules, and support VPN/IDS/IPS Integrate network logs into Sentinel Playbooks & Automation Develop and maintain incident response playbooks aligned to best practices Regularly review and improve playbooks; maintain clear documentation Vulnerability Management Support full lifecycle: discovery, assessment, prioritisation, remediation Use Defender VM and collaborate with teams to resolve risks Track and report on remediation progress Data Protection & Compliance Support Microsoft Purview (DLP, data classification, compliance) Monitor DLP alerts and assist with regulatory requirements (e.g. POPIA, GDPR) Continuous Improvement & Collaboration Contribute to security policies and practices Work with cross-functional teams to strengthen security Stay updated on threats and industry trends Job Experience and Skill Required 3+ years experience Security Analyst / SOC / Security Experience in securing Microsoft 365 and Azure environment Certificates in CompTIA, CISSP, or similar Microsoft Certified: Security Operations Analyst Associate Microsoft Certified: Azure Security Engineer Associate Microsoft Certified: Information Protection Administrator Hands on Experience with Microsoft Sentinel (Azure Sentinel), Microsoft Defender security suite, Microsoft Azure (IAM, Networking, logging, security controls and Microsoft Purview (DLP, Information Protection, Compliance Manager)) #J-18808-Ljbffr