Tower Lead (Support & Operations)

Job Summary

We are seeking an experienced Endpoint Security Lead to manage and govern enterprise endpoint security operations across Azure environments. The role involves leading security operations, driving incident response, ensuring compliance, and optimizing security posture using Microsoft Defender and Trend Micro platforms.Job Description : Lead and manage endpoint security operations using Microsoft Defender and Trend Micro solutions in Azure.\\r\\n Oversee incident response lifecycle (L2/L3) including triage, investigation, containment, eradication, and recovery.\\r\\n Architect and implement endpoint security strategies aligned with organizational and cloud security standards.\\r\\n Manage Microsoft Defender suite (Defender for Endpoint, Defender for Cloud, Defender XDR) and Trend Micro platforms (Vision One, Cloud One, Apex One).\\r\\n Ensure comprehensive protection for Azure workloads, including VMs and hybrid environments.\\r\\n Integrate security tools with Microsoft Sentinel (SIEM) and other monitoring platforms.\\r\\n Drive threat hunting, proactive detection, and advanced analytics.\\r\\n Oversee policy management, compliance enforcement, and security baselines.\\r\\n Lead vulnerability management and remediation programs in coordination with infra teams.\\r\\n Provide technical leadership and guidance to L1/L2 teams and act as escalation point.\\r\\n Perform security posture assessments and recommend improvements.\\r\\n Automate security operations using PowerShell, Azure CLI, Logic Apps, etc.\\r\\n Conduct RCA, reporting, and executive-level dashboards.\\r\\n Ensure documentation, SOPs, and governance processes are maintained.

Key Responsibilities

Lead and manage endpoint security operations using Microsoft Defender and Trend Micro solutions in Azure. Oversee incident response lifecycle (L2/L3) including triage, investigation, containment, eradication, and recovery. Architect and implement endpoint security strategies aligned with organizational and cloud security standards. Manage Microsoft Defender suite (Defender for Endpoint, Defender for Cloud, Defender XDR) and Trend Micro platforms (Vision One, Cloud One, Apex One). Ensure comprehensive protection for Azure workloads, including VMs and hybrid environments. Integrate security tools with Microsoft Sentinel (SIEM) and other monitoring platforms. Drive threat hunting, proactive detection, and advanced analytics. Oversee policy management, compliance enforcement, and security baselines. Lead vulnerability management and remediation programs in coordination with infra teams. Provide technical leadership and guidance to L1/L2 teams and act as escalation point. Perform security posture assessments and recommend improvements. Automate security operations using PowerShell, Azure CLI, Logic Apps, etc. Conduct RCA, reporting, and executive-level dashboards. Ensure documentation, SOPs, and governance processes are maintained

Skill Requirements

Strong hands-on experience with: Microsoft Defender (MDE, Defender for Cloud, XDR) Trend Micro (Vision One / Cloud One / Apex One / Deep Security) Deep understanding of Azure security architecture and cloud-native protection. Expertise in EDR/XDR tools, threat detection, and incident response frameworks. Experience with SIEM tools (Microsoft Sentinel preferred). Knowledge of MITRE ATT&CK; framework and threat modeling. Hands-on experience in security automation and orchestration. Strong knowledge of Windows/Linux endpoint security in cloud/hybrid environments. Understanding of compliance frameworks (ISO 27001, NIST, CIS benchmarks).

Other Requirements

Qualifications: Bachelor’s degree in Cyber Security, IT, or related field. 6–10+ years of experience in endpoint security / SOC / cloud security roles. Relevant certifications preferred: Microsoft Certified: Azure Security Engineer / Security Operations Trend Micro certifications CISSP / CEH / Security+ Preferred Attributes: Strong leadership and team management skills. Ability to drive security transformation in Azure environments. Experience in 24x7 SOC operations and escalation management. Excellent stakeholder communication and reporting skills. Proactive, strategic thinker with problem-solving mindset.

Key Sourcing Information : NA

Interviewer 1 SAP ID : 51736240

Job Description : Lead and manage endpoint security operations using Microsoft Defender and Trend Micro solutions in Azure.\\r\\n Oversee incident response lifecycle (L2/L3) including triage, investigation, containment, eradication, and recovery.\\r\\n Architect and implement endpoint security strategies aligned with organizational and cloud security standards.\\r\\n Manage Microsoft Defender suite (Defender for Endpoint, Defender for Cloud, Defender XDR) and Trend Micro platforms (Vision One, Cloud One, Apex One).\\r\\n Ensure comprehensive protection for Azure workloads, including VMs and hybrid environments.\\r\\n Integrate security tools with Microsoft Sentinel (SIEM) and other monitoring platforms.\\r\\n Drive threat hunting, proactive detection, and advanced analytics.\\r\\n Oversee policy management, compliance enforcement, and security baselines.\\r\\n Lead vulnerability management and remediation programs in coordination with infra teams.\\r\\n Provide technical leadership and guidance to L1/L2 teams and act as escalation point.\\r\\n Perform security posture assessments and recommend improvements.\\r\\n Automate security operations using PowerShell, Azure CLI, Logic Apps, etc.\\r\\n Conduct RCA, reporting, and executive-level dashboards.\\r\\n Ensure documentation, SOPs, and governance processes are maintained.