Employer简体中文Login/Signup

Cloud Solution Architect

Houston 7 days agoFull-time External
Negotiable
Invoke

Invoke

Cloud Solution Architect – Threat Protection Location: Houston, Texas (Remote) Invoke—Microsoft Security Services Partner of the Year and Microsoft Partner of the Year for Identity—is seeking a hands-on consultant to lead enterprise threat mitigation implementations across cloud and hybrid environments. You'll work with business and IT stakeholders to assess current security posture, design target operating models, and deploy Microsoft Defender XDR (including for Identity, Endpoint, Cloud Apps, Office, and Cloud Infrastructure), Microsoft Sentinel, Security Copilot, and Vulnerability Management solutions. This role also involves establishing sustainable policies, processes, and metrics aligned with frameworks such as Zero Trust, NIST, and CIS. The ideal candidate combines deep technical expertise with practical governance design and change management skills. Responsibilities Working on some of the largest and leading-edge engagements; In the Cloud Solution Engineer – Threat Protection role, you will lead customer-facing engagements on some of the largest and most advanced security projects, guiding organizations through their journey to modernize and adopt Microsoft Threat Protection capabilities across cloud and hybrid environments. Key responsibilities include: • Advanced Threat Protection: Implement machine learning-driven anomaly detection, threat intelligence via Microsoft Security Graph, and Indicators of Compromise (IoC) analysis. • Prevention & Hardening: Deploy proactive malware blocking, Attack Surface Reduction (ASR), endpoint security, exploit protection, network protection, and Cloud Security Posture Management (CSPM) using Microsoft Defender for Cloud to secure Azure and hybrid infrastructure. • Identity & Access Management: Design RBAC/ABAC models, enable Just-In-Time (JIT) access, integrate Privileged Access Management (PAM), enforce Separation of Duties (SoD), and access review attestation. • Extended Detection & Response (XDR): Configure Microsoft Defender XDR for cross-domain correlation across endpoints, identities, email, and cloud apps; implement automated investigation and remediation with AI-driven playbooks. • Identity Protection: Enable risk-based Conditional Access with Microsoft Entra ID Protection, mitigate credential theft, and deploy phishing-resistant authentication methods. • Security Operations & Response: Utilize Microsoft Sentinel for log aggregation, advanced threat detection, automated response workflows, and proactive threat hunting. • Vulnerability & Exposure Management: Implement continuous scanning for CVEs and misconfigurations and provide actionable patch recommendations. • Integration & Automation: Deliver a unified security experience through the Microsoft Defender Portal and leverage Security Copilot for AI-assisted incident analysis, response guidance, and automation. You will be responsible for the full engagement lifecycle—discovery, analysis, design, and implementation—while confidently leading customer workshops and executive discussions. General Requirements: • A minimum of 5 years of experience in IT professional services delivery. • A minimum of 2 years of experience as an Architect or Consultant for Microsoft Purview. • Highly motivated individual who exercises diligence in their work and an attitude of willingness to be successful. • Relationship building abilities. • Demonstrate confident presentation, negotiation, and communication skills. • Strong organizational and time management skills with the ability to work autonomously or with a team. • Excellent written and verbal skills with proficiency in all relevant Microsoft Data Security & Governance solutions. • Team player willing to assist peers to increase collective agility and success. • Meticulously attentive to details. Role Specific Requirements: • Proven design, planning and implementation experience with Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Microsoft Defender for Identity, Microsoft Defender for Cloud Apps (CASB), Microsoft Defender for Cloud, Microsoft Sentinel, Microsoft Entra ID Protection, and Microsoft Security Copilot. • Experience in working with implementing the Microsoft Defender Suite, Entra ID, Sentinel, and Security Copilot. • Experience working with customer Security teams to help provide guidance in moving to cloud-based management. • Experience working with customers in adopting new technologies to include Organizational Change Management by developing end-user, help desk, and stakeholder communications. • Experience working with Microsoft's scripting (PowerShell) and low code with Power Platform to extend and customize capabilities. Role Specific Preferred Experience: • Experience in design, implementation, and adoption of the Microsoft Defender Suite, including Defender for Cloud. • Experience in design, implementation, and adoption of Microsoft Entra ID. • Experience in design, implementation, and adoption of Microsoft Sentinel. • Experience in design, implementation, and adoption of Security Copilot. Recommended Certifications: • Microsoft Certified: Security Operations Analyst Associate (SC-200) • Microsoft Certified: Azure Security Engineer Associate (AZ-500) Preferred Certifications: • Microsoft Certified: Identity and Access Administrator Associate (SC-300) • Microsoft 365 Certified: Administrator Expert (MS-102) • Microsoft 365 Certified: Endpoint Administrator Associate (MD-102) Compensation: • This position is full-time offering a base salary and monetary incentives. • A generous benefits package is also available to qualifying full-time employees. About Invoke Invoke is a consulting firm specialized in providing solutions for critical business needs through modern technologies encompassing Identity, Threat Protection, Data Security, Endpoint Management, and AI. Our mission is to deliver long-term business value by positioning ourselves as our customer's trusted advisors through results-driven strategic planning and alignment with their business goals. As a Microsoft System Integrator with a Managed, specialized level partnership status, and Microsoft Partner of The Year, Invoke delivers a wide array of professional services to complement their customer's current or future investments in Microsoft technologies. Invoke Core Values: • Be Results-Driven: We prioritize delivering measurable, impactful outcomes through focus, determination, and commitment. • Lead with Integrity: We operate with trust, ethical decision-making, and reliability, fostering confidence in our commitments and relationships. • Collaborate to Succeed: We believe in the power of teamwork, open communication, and customer-focused collaboration to achieve shared success. • Innovate and Improve: We continuously seek creative and scalable ways to refine how we work and deliver value, improving solutions across all areas of the business. • Solve Problems Effectively: We tackle challenges with creativity, focus, and sustainable solutions, ensuring long-term success and stability.