Implement and manage security controls across Azure environments (NSGs, Azure Firewall, Private Endpoints, identity, storage, compute, virtual networks)
Monitor and improve cloud security posture using Microsoft Defender for Cloud and Azure Policy
Deploy, configure and maintain Microsoft Sentinel (SIEM), including detection rules, threat hunting and automation playbooks
Configure and operate Microsoft Purview solutions (DLP, Information Protection, Insider Risk, eDiscovery, audit logging, data classification)
Secure Microsoft 365 services, including Exchange Online, SharePoint, OneDrive, Teams and Power Platform
Manage email security tooling (anti-phishing, anti-spoofing, Safe Links, Safe Attachments, mail hygiene policies)
Support and manage MDR/SOC capabilities in collaboration with external security partners
Investigate and respond to security incidents (compromised accounts, suspicious logins, email threats, endpoint alerts)
Implement and maintain Zero Trust network security principles (segmentation, IDS/IPS, secure remote access)
Lead or support incident response activities, including triage, containment, root cause analysis and reporting
Automate security processes and compliance checks using PowerShell and Microsoft Graph API
Conduct risk assessments, coordinate penetration testing and track remediation actions
Develop and maintain security standards, runbooks, procedures and documentation
Provide expert guidance and best-practice security recommendations to internal stakeholders

3–5 years of hands-on experience in cybersecurity (cloud, identity and Microsoft security focus preferred)
Strong experience with Microsoft Entra ID (Conditional Access, PIM, Identity Governance)
Proven experience securing Azure environments (Defender for Cloud, Sentinel, NSGs, Azure Firewall)
Experience with Microsoft 365 security & compliance tools (Purview, Defender for Office 365 / Endpoint)
Solid understanding of networking fundamentals (TCP/IP, DNS, firewalls, VPNs, segmentation)
Practical incident response and investigation experience
Experience writing and maintaining PowerShell scripts for automation
Strong analytical and problem-solving skills
Excellent communication skills, with the ability to explain technical concepts to non-technical stakeholders

Experience tuning SIEM platforms and conducting threat hunting (Sentinel preferred)
Experience with secure email gateways (e.g., Mimecast or similar)
Exposure to vulnerability management tools and processes
Familiarity with Cyber Essentials Plus, ISO 27001 or similar compliance frameworks
Experience supporting or coordinating penetration testing exercises

Be part of our collegial environment where responsibility and authority are shared equally amongst colleagues, and help create our company culture
A culture in which we don’t criticise failure but ensure we learn from our mistakes
An Agile environment where your ideas are welcome
The possibility to grow and experience different projects
Fully remote
Ongoing Training & Mentoring
The possibility of travelling

Vigil is hiring a Cyber Security Engineer