CyberSecurity Remediation Engineer (MSFT)

Piper Companies is looking for a Security Remediation Engineer to support enterprise‑wide hardening efforts within a global cybersecurity environment. This role, on-site in Fairfax, VA, plays a key part in reducing attack surface across Hybrid Identity (AD/Entra ID), the Microsoft 365 E5 security suite, and multi‑platform compute environments including Windows Server, endpoints, and Azure.

Responsibilities include:

• Implementing threat protections across the M365 E5 security stack, including Defender for Endpoint, Defender for Identity, and Defender for Cloud.
• Hardening infrastructure and endpoints using Intune and GPO, applying Microsoft Security Baselines across servers, workstations, and secure enclaves.
• Remediating high‑priority findings in Microsoft Security Exposure Management and Secure Score, ensuring secure cloud identity and workload configurations.
  
  

Required Experience:

• 3 years in Systems Engineering or Security Operations with hands-on experience in M365 E5, Intune/GPO, and Defender Vulnerability Management.
• Strong analytical skills with the ability to trace security gaps across logs, alerts, and attack paths.
• Adaptability and a continuous‑learning mindset toward modern cybersecurity tools.
• Ability to balance risk with business impact and communicate clearly with both technical and non‑technical stakeholders.
• Calm, methodical problem-solving under pressure, particularly during deployments or incident response.
  
  

Keywords: Security Remediation Engineer, cybersecurity, attack surface reduction, Hybrid Identity, AD, Entra ID, Microsoft 365 E5, M365 E5 Security, Defender for Endpoint, Defender for Identity, Defender for Cloud, Intune, Group Policy, GPO, Microsoft Security Baselines, Windows Server, Windows Workstations, secure enclaves, cloud security, Azure, Microsoft Security Exposure Management, Secure Score, vulnerability management, systems engineering, security operations, endpoint hardening, technical remediation, log analysis, attack path analysis, risk reduction, security architecture, network infrastructure, secure image lifecycle, problem‑solving, analytical mindset, growth mindset, operational efficiency, business risk, security best practices.