Microsoft 365 Engineer

We are seeking a Microsoft 365 security and compliance expert with deep hands-on experience in Microsoft Defender, Microsoft Purview, and the Microsoft 365 Admin Center. You will design, implement, and optimize security and compliance capabilities across Microsoft 365, translating risk and regulatory requirements into enforceable technical controls. This role requires strong analytical skills, disciplined execution, and the ability to operate as both a technical authority and a pragmatic advisor to IT and security stakeholders.

Microsoft 365 Admin Center (Tenant Administration & Service Operations)

• Own and optimize Microsoft 365 tenant administration via the Microsoft 365 Admin Center across core workloads (Exchange, SharePoint, OneDrive, Teams, and related admin portals).
• Manage user and group lifecycle operations, licensing strategy, service health monitoring, and incident communication.
• Define and maintain tenant-wide configuration standards, governance guardrails, and administrative operating procedures.
• Oversee administrative roles and access models (least privilege), including role assignment reviews and privileged access controls where applicable.
• Drive service readiness and change management: feature releases, Message Center review, impact analysis, stakeholder communications, and rollout planning.
• Troubleshoot Microsoft 365 service issues using service health telemetry, audit logs, and diagnostic tooling; coordinate with Microsoft support as needed.
• Produce high-quality documentation: tenant configuration baselines, runbooks, operational playbooks, and escalation procedures.

Microsoft Defender (Security Engineering & Operations)

• Architect, deploy, and optimize Microsoft Defender solutions, including policy and control baselining.
• Implement and tune Defender security controls such as endpoint protection, identity protection, email and collaboration protection, and cloud app security monitoring (as applicable).
• Develop detection and response use-cases, triage workflows, alert tuning, and incident response playbooks.
• Conduct root-cause analysis of security incidents and drive remediation and hardening measures.
• Integrate Defender telemetry with SIEM/SOAR (e.g., Microsoft Sentinel) and standardize operational reporting (KPIs/KRIs).

Microsoft Purview (Compliance, Information Protection & Governance)

• Design and deploy information protection and compliance capabilities (e.g., sensitivity labeling, encryption, DLP, retention).
• Implement data governance and lifecycle management aligned to business and legal requirements.
• Configure and maintain compliance policies for Microsoft 365 workloads (Exchange, SharePoint, OneDrive, Teams).
• Support eDiscovery, audit, insider risk and information barrier use-cases (where applicable).
• Ensure controls are measurable, auditable, and aligned with relevant frameworks (e.g., ISO 27001, NIST, GDPR).

Architecture, Delivery & Stakeholder Management

• Translate business risk and regulatory requirements into technical designs, implementation plans, and operational controls.
• Lead or support migrations and security uplift initiatives, ensuring minimal disruption and strong change management.
• Provide 3rd line support and act as escalation point for complex Microsoft 365 security/compliance and tenant administration issues.
• Coach and upskill internal teams; define standards and guardrails for secure-by-default configurations.

• Bachelor’s or Master’s degree in Computer Science, Information Security, Engineering, or a related discipline (or equivalent experience).
• 5+ years of experience in Microsoft 365 security, compliance, and tenant administration (or closely related).
• Proven, hands-on expertise in:
• Microsoft 365 Admin Center operations (tenant governance, licensing, service health, admin roles, workload administration)
• Microsoft Defender (Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps / Defender XDR as applicable)
• Microsoft Purview (Sensitivity labels, DLP, retention, audit, eDiscovery, compliance reporting)
• Strong analytical problem-solving skills; ability to diagnose issues across identity, endpoint, messaging, collaboration, and data governance.
• Experience implementing controls at scale using automation (PowerShell, Microsoft Graph, policy-driven configuration).
• Microsoft certifications such as:
• MS-102 (Microsoft 365 Administrator)
• SC-100 (Cybersecurity Architect)
• SC-200 (Security Operations Analyst)
• SC-400 (Information Protection Administrator)
• Experience with Microsoft Sentinel and KQL.
• Familiarity with security baselines, Zero Trust architecture, and Secure Score / Compliance Score improvement programs.
• Experience with Intune device management and endpoint compliance alignment (preferred).

• A monthly gross salary between € 4.200 and € 7.000 based on 40 hours per week;

• 8% holiday allowance of your total gross salary;
• A profit share, which is about one month salary on an annual base;
• Travel reimbursement: a NS Business card or mileage allowance (€ 0.23 per km);
• 24 holiday days (with the option to buy extra) and 7 inclusion days, which can be exchanged with fixed Dutch national holidays, allowing you to take them when you like;
• A pension scheme, with the option to save extra;
• A comprehensive vitality offer to help you stay healthy. Read more here;
• A one-year contract that, subject to satisfactory performance, will be converted into a permanent contract;
• Flexibility in working environment. As part of a hybrid working team, you will work partly from home and partly from the office. If you work in the office, a free lunch is waiting for you every day. If you work from home, you will receive a working from home allowance (€ 4 net per day) and internet allowance (€ 35 net per month);
• The possibility of working remotely from abroad for up to 2 months per year;
• The opportunity to develop yourself at our Academy through courses and training, both professionally and personally;
• An active and fun community of ‘Keylaners’. We also have after work drinks at our in-house pub every Thursday.