Job Description

Job Title: Security Engineer

Contract: 6 months to start (with strong chance to extend or convert to FTE)

Location: Downtown Toronto (x1 per week on-site)

Our client is seeking a highly skilled Microsoft Defender Security Engineer with a strong background in Linux engineering to join their security team. The successful candidate will be responsible for deploying, configuring, and managing Microsoft Defender on their Linux infrastructure, ensuring robust protection and compliance with industry best practices.

Responsibilities:

• Deploy, configure, and maintain Microsoft Defender for Endpoint on various Linux distributions.
• Collaborate with IT and security teams to integrate Defender with existing security tools and workflows.
• Develop and maintain automation scripts (e.g., Ansible) for large-scale deployment and configuration management.
• Tune benign MDE alerts via suppression rules and work with infra/app owners to ensure proper exclusions are identified and implemented.
• Maintain thorough documentation for processes, configurations, and EDR/AV exclusion procedures.
• Provide technical guidance and training to internal teams on Defender security best practices for Linux environments.
• Stay current with emerging security threats, vulnerabilities, and technologies relevant to Linux and Microsoft Defender.

Qualifications:

• 3+ years of experience with Microsoft Defender for endpoint: In-depth experience deploying and managing Defender on Linux systems.
• 3+ years of experience in Linux engineering or administration: Proficient in administering Red Hat Linux distributions.
• 3+ years of experience in automation using Ansible for configuration management and deployment.
• 3+ years of experience with shell scripting (Bash, Python, or similar) to automate security tasks.
• Configuration Management: Experience with Intune is important for AV policy and exclusion management.
• Networking: Understanding of network security principles and protocols as they relate to endpoint protection.
• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).

• Relevant certifications (e.g., Microsoft Certified: Security Operations Analyst Associate, RHCE, CompTIA Security+) are a plus.
• Strong analytical and problem-solving abilities.

• Excellent verbal and written communication skills.
• Ability to work independently and as part of a collaborative team.
• Commitment to continuous learning and professional development.