• Assist in building and deploying solutions working with Microsoft Purview, Privileged Identity Management and governance strategies • Collaborating with Quisitive team members and client technical managers and staff to understand security challenges • Designing and implementing Microsoft Purview solutions including Data Loss Prevention (DLP), Information Protection, and Insider Risk Management • Classifying and labeling sensitive data using Microsoft Purview Information Protection and auto-labeling policies • Supporting data governance initiatives through Purview Data Map, data discovery, and compliance posture improvements • Setup and configuration of Microsoft Entra ID • Working with Defender for Microsoft 365 products to improve client security posture • Working with Defender for Endpoint for full endpoint protection & compliance integration within Intune / Endpoint Manager • Working with team members to assist in client transitions to Microsoft Endpoint Manager and co-management • Logging analytics and analyzing data via Azure Log Analytics • Developing, Updating, and Managing PowerShell scripting for automation • Setup and configuration of Conditional Access Policies • Setup and configuration of Privileged Identity Management

• Implement and sustain security controls aligned to CMMC Level 1/2, NIST SP 800-171, and CUI/ITAR requirements • Design and maintain PKI (Public Key Infrastructure) and certificate lifecycle • Implement and manage Identity & Access Management (IAM/IGA) solutions • Drive continuous compliance monitoring and maintain ongoing audit readiness • Support ITGC controls in alignment with established governance frameworks • Serve as the primary Level 3 escalation resource for complex infrastructure and security challenges • Mentor and provide technical guidance to junior engineers • Champion operational continuity and long-term infrastructure stability • Oversee patch management and vulnerability remediation programs • Manage Group Policy (GPO) design, implementation, and enforcement • Develop and maintain secure, standardized golden images • Apply CIS/NIST hardening baselines across systems and environments • Support secure lifecycle management from deployment through decommission • Support Active Directory / Azure AD (Entra ID) architecture, integrations, and governance • Administer Microsoft Intune for endpoint compliance and configuration management • Deploy and manage virtual machines and cloud services within Azure, including GCC High • Design, maintain, and optimize infrastructure across hybrid Azure environments

• Design and develop detection logic and security rules to identify threats, suspicious behaviors, and misconfigurations across SaaS applications. • Research SaaS platforms (e.g., Google Workspace, Microsoft 365, Salesforce, Slack, etc.) to understand security models, APIs, and potential attack surfaces. • Translate real-world attack techniques and SaaS security risks into scalable product capabilities, including detections, posture checks, and risk signals. • Contribute to both threat detection and posture management content, ensuring broad coverage across identity, access, integrations, and data exposure risks. • Analyze large-scale SaaS telemetry to identify patterns, anomalies, and opportunities for new detections or improvements. • Continuously improve detection quality by reducing false positives and ensuring signals are actionable for customers. • Collaborate with Engineering to productionize detection logic and ensure reliable execution at scale. • Partner with Product to shape how security insights are surfaced, prioritized, and explained to users. • Stay current on emerging SaaS attack techniques, identity threats, OAuth risks, and AI-related security considerations. • Contribute to internal knowledge sharing and help elevate SaaS security expertise across the organization.

• Implement and sustain security controls aligned to CMMC Level 1/2, NIST SP 800-171, and CUI/ITAR requirements • Design and maintain PKI (Public Key Infrastructure) and certificate lifecycle • Implement and manage Identity & Access Management (IAM/IGA) solutions • Drive continuous compliance monitoring and maintain ongoing audit readiness • Support ITGC controls in alignment with established governance frameworks • Serve as the primary Level 3 escalation resource for complex infrastructure and security challenges • Mentor and provide technical guidance to junior engineers • Champion operational continuity and long-term infrastructure stability • Oversee patch management and vulnerability remediation programs • Manage Group Policy (GPO) design, implementation, and enforcement • Develop and maintain secure, standardized golden images • Apply CIS/NIST hardening baselines across systems and environments • Support secure lifecycle management from deployment through decommission • Support Active Directory / Azure AD (Entra ID) architecture, integrations, and governance • Administer Microsoft Intune for endpoint compliance and configuration management • Deploy and manage virtual machines and cloud services within Azure, including GCC High • Design, maintain, and optimize infrastructure across hybrid Azure environments