Microsoft Security SME

We are seeking talented Security Engineers / Architects to join our Cyber Security Architecture team within PwC’s UK Security practice. You will play a pivotal role weighing in on secure digital environments for our clients with a primary focus on Microsoft’s E5 security suite, especially Microsoft Purview. Your remit extends across a range of enterprise technologies, leading design and implementation of secure solutions in multi-year transformation programmes and ensuring resilience and compliance across hybrid and multi-cloud environments.

Responsibilities

• Leading design and implementation of Microsoft E5 security and compliance capabilities, especially in Microsoft Purview, Defender, Entra ID, and Sentinel.
• Acting as a trusted security architect, developing reference architectures and target operating models across Microsoft and non-Microsoft technologies.
• Integrating Microsoft-native controls within enterprise and multi-cloud architectures.
• Providing architectural oversight across projects, ensuring alignment with Zero Trust and regulatory frameworks.
• Guiding and mentoring security engineers in secure‑by‑design principles and automation through DevSecOps practices.
• Advising clients on data protection, governance, and insider risk strategies using Microsoft Purview.
• Building artefacts, documentation, and automation (scripts, templates, IaC) enabling sustainable security operations.
• Collaborating with cross‑functional teams across PwC to deliver integrated security solutions that span application, infrastructure, and identity domains.

Qualifications

• Deep expertise in Microsoft’s E5 security suite, with a focus on Purview (Information Protection, Data Governance, and Compliance).
• A strong architectural mindset, translating security principles into scalable design patterns.
• Demonstrable experience delivering enterprise‑scale security solutions in complex client environments.
• Strong understanding of enterprise security architecture principles and how Microsoft controls integrate with broader platforms and services.
• Excellent communication skills, articulating technical designs to senior executives and delivery teams.
• A forward‑thinking, curious mindset and ability to advise beyond Microsoft when client needs demand.
• Experience in AWS, GCP, or other enterprise security ecosystems will be considered highly beneficial.

Key Technologies & Frameworks

• Microsoft Purview: Information Protection, Data Lifecycle Management, Insider Risk, eDiscovery, and Compliance Portal configuration.
• Microsoft Defender Suite: Defender for Endpoint, Identity, Office 365, Cloud, and Cloud Apps.
• Microsoft Sentinel: Design and onboarding connectors.
• Microsoft Entra ID (Azure AD): Conditional Access, Identity Governance, PIM, Access Reviews.
• Defender for Cloud & Azure Security: Key Vault, DDoS Protection, Security Posture Management.
• Zero Trust, NIST, and Cloud Security Alliance (CSA) frameworks.
• Experience designing or reviewing security solutions for SaaS ecosystems such as Salesforce.

#J-18808-Ljbffr…