Technical Engineering

Job Description:

The ideal candidate will be responsible for implementing and maintaining robust security policies,

ensuring compliance with industry standards (CIS benchmarks), and managing security across Azure

environments, Microsoft 365, and server endpoints. This role includes conducting vulnerability

assessments, automating security processes, and providing expertise in Active Directory, group policy

management, and cloud security integration.

Salary : SGD 5,000 – 6,000

Key Responsibilities:

- Lead the implementation and configuration of CIS benchmarks for server and endpoint

hardening.

- Develop, manage, and maintain security policies using Microsoft Intune and GPO for

compliance enforcement.

Conduct vulnerability assessments (VA) with tools like Microsoft Defender for Endpoint

(MDE) and CIS-CAT Pro.

- Collaborate with IT teams to remediate vulnerabilities and non-compliance issues.

Automate security processes and streamline server hardening for Azure environments.

Design and manage Azure-based security solutions, ensuring CIS compliance and industry

best practices.

- Manage the lifecycle of security policies in Microsoft 365 and Azure environments.

Provide expert knowledge in Active Directory (AD) architecture, security configuration, and

GPO management.

- Monitor, troubleshoot, and resolve CIS compliance and server hardening issues.

Regularly update documentation related to security policies and compliance procedures.

Plan, implement, and deploy ManageEngine Suite products for enhanced security

management.

Requirements:

- Proven experience in server hardening using CIS benchmarks.

Expertise in Microsoft Intune and Group Policy Objects (GPO) for deploying security

settings.

- Working knowledge of ManageEngine Suite products, including Vulnerability Manager+,

Log360, and Desktop Central.

- Experience with Microsoft Defender for Endpoint (MDE) and CIS-CAT Pro for vulnerability

assessments.

- Strong understanding of Azure architecture, security controls, and compliance

management.

- Proficiency in managing Microsoft 365 security policies and configurations.

- Hands-on experience with Active Directory (AD), including GPO and secure configuration.

- Familiarity with scripting (e.g., PowerShell) for automating security deployments.

- Excellent problem-solving skills and strong communication abilities.

- Experience with incident response and risk management frameworks (preferred)