Home › Companies › PTC Group LLC › Security Engineer (Microsoft 365 Security & Detection)
Security Engineer (Microsoft 365 Security & Detection)
PTC Group LLC · Holladay, UT · Remote · Active · Paylocity Recruiting
Job facts
| Field | Value |
|---|---|
| Company | PTC Group LLC |
| Title | Security Engineer (Microsoft 365 Security & Detection) |
| Normalized title | - |
| Department / team | - |
| Location | Holladay, UT, United States |
| Work model | Remote / Remote |
| Employment type | - |
| Salary | - |
| Status | active |
| ATS provider | Paylocity Recruiting |
| Posted / first seen | 2026-05-27 / 2026-05-30 |
| Changed / last seen | 2026-05-30 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from PTC Group LLC. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Paylocity Recruiting. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Holladay. | Open |
| Work model jobs | Active Remote postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | PTC Group LLC |
| Source | 4762d63c-ec9c-43e7-a369-06df97b43096 |
| ATS provider | Paylocity Recruiting |
Description
Due to continuing growth, we are seeking a Security Engineer focused on securing and monitoring a Microsoft 365–centric environment. This role is responsible for detecting and responding to threats across Entra ID (Azure AD), Microsoft Defender, Intune-managed endpoints, and Microsoft 365 services including Exchange Online, SharePoint, and Teams.
You will play a key role in improving visibility, strengthening access controls, and building scalable detection and response capabilities across cloud and endpoint systems.
Who we are:
Platform Accounting Group is a rapidly growing professional services firm providing tax, accounting, assurance, IT consulting, and wealth management services to small and medium sized businesses and their owners. We currently have 50+ offices across 15 states with much more growth on the horizon. Enjoy a professional and dynamic work environment while making work/life balance a priority.
What you will do:
Monitor and investigate alerts across Microsoft Defender (Defender for Endpoint, Defender for Identity, Defender for Office 365) and associated security platforms Analyze Entra ID (Azure AD) sign-in logs, audit logs, and risky sign-in activity to identify potential account compromise or misuse Respond to security incidents involving endpoints, identities, email, and collaboration platforms Tune and optimize detection rules, alert thresholds, and signal-to-noise ratios within SIEM and Microsoft security tools Perform log analysis and basic threat hunting using tools such as Microsoft Sentinel, Defender Advanced Hunting, and audit logs Implement and validate Conditional Access policies, MFA enforcement, and identity protection controls Support endpoint security through Intune and Defender for Endpoint, including policy enforcement, device compliance, and response actions Collaborate with IT to harden Microsoft 365 configurations (Exchange Online, SharePoint, Teams) and reduce attack surface Support vulnerability management by identifying gaps and coordinating remediation across systems and endpoints Maintain clear and audit-ready documentation of incidents, controls, and response activities Assist with eDiscovery, audit requests, and compliance-related investigations when required Identify gaps in monitoring, coverage, or controls and recommend improvements to security architecture What we look for:
Core Knowledge & Experience
Strong understanding of Microsoft 365 security architecture, including Entra ID, Exchange Online, SharePoint, and Teams Experience with Microsoft Defender security stack (Defender for Endpoint, Office 365, Identity, or Cloud Apps) Familiarity with identity security concepts such as MFA, Conditional Access, and identity risk Experience with endpoint management and security using Microsoft Intune or similar platforms Working knowledge of incident response processes and common attack techniques (phishing, credential abuse, lateral movement) Technical Skills (One or More of the Following)
Log analysis and threat hunting using Microsoft Sentinel or Defender Advanced Hunting (KQL experience preferred) Experience configuring and tuning alerts in SIEM, EDR, or cloud-native security tools Scripting or automation using PowerShell, KQL, or Python Experience with email security, phishing analysis, and investigation within Exchange Online Operational & Behavioral Skills
Ability to investigate and document security incidents with clarity and precision Strong communication skills with both technical and non-technical stakeholders Ability to collaborate across IT, infrastructure, and compliance teams Strong ownership mindset and ability to drive issues through resolution Continuous learning mindset with interest in cloud security and advanced detection Preferred, but Not Required
Experience with Microsoft Purview (compliance, audit, or eDiscovery) Familiarity with regulatory or compliance frameworks (e.g., SOC 2, GLBA, HIPAA) Exposure to automation, detection engineering, or security orchestration (SOAR) Experience supporting security operations in a cloud-first or hybrid environment Experience with AVD and Azure infrastructure What we offer:
Opportunity for advancement within a rapidly growing professional services firm Competitive compensation 401(k) and medical benefits
Full job record
| Job ID | 9fe2cd6b7060678edaa981c4c7e5303f0d498734 |
| Org ID | 5021ed4f-48e6-44f0-bce3-c76d2053b024 |
| Source ID | 4762d63c-ec9c-43e7-a369-06df97b43096 |
| Board ID | 4762d63c-ec9c-43e7-a369-06df97b43096 |
| Provider | paylocity |
| Provider Job Key | 4165183 |
| Title | Security Engineer (Microsoft 365 Security & Detection) |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Holladay, UT |
| Department | — |
| Team | — |
| Employment Type | — |
| Workplace Type | remote |
| Remote Policy | remote |
| Country | United States |
| Region | UT |
| City | Holladay |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://recruiting.paylocity.com/recruiting/jobs/Details/4165183/PT-and-C-Group-LLC/Security-Engineer-Microsoft-365-Security-and-Detection |
| Apply URL | https://recruiting.paylocity.com/Recruiting/jobs/Apply/4165183 |
| First Seen At | 2026-05-30 05:48:49Z |
| Last Seen At | 2026-06-06 13:42:18Z |
| Last Checked At | 2026-06-06 13:42:18Z |
| Last Changed At | 2026-05-30 05:48:49Z |
| Inactive At | — |
| Source Posted At | 2026-05-27 03:10:20Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=paylocity/board=77d76f00-b649-4164-ba8c-7811332f3b92/date=2026-06-06/2026-06-06T13-42-08-830Z-9167527b0a200e15cd5849e6e81fc7e9858d1083a5ce7ba8c4876e3e14dd130d.json |
Event Fields
{
"content_hash": "a1a41c4d4161d2008cb5e758faebd4c917a2340527cda396d9784a013c54b226",
"source_hash": "a23c5103ab70e4cbf3e56533e72270c3fbb86bbc7e359cdecbd7b8596303d7bf",
"last_changed_at": "2026-05-30T05:48:49.640Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Holladay, UT",
"city": "Holladay",
"region": "UT",
"country": "United States",
"is_remote": true,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T13:42:18.127Z",
"launch_scope": {
"reason": "paylocity_production_catalog",
"included": true,
"location": {
"raw": "Holladay, UT",
"city": "Holladay",
"region": "UT",
"country": "United States",
"is_remote": true,
"confidence": 0.8
},
"countries": [
"United States"
]
},
"remote_policy": "remote",
"salary_period": null,
"workplace_type": "remote",
"salary_currency": null
}Extensions
{}Native Structured
{
"detail": {
"url": "https://recruiting.paylocity.com/recruiting/jobs/Details/4165183/PT-and-C-Group-LLC/Security-Engineer-Microsoft-365-Security-and-Detection",
"job_type": null,
"pageData": {
"jobTitle": "Security Engineer (Microsoft 365 Security & Detection)",
"moduleName": "PT&C Group LLC",
"showSocialWidget": true
},
"apply_path": "/Recruiting/jobs/Apply/4165183",
"html_title": "PT&C Group LLC - Security Engineer (Microsoft 365 Security & Detection)",
"description_html": "<p>Due to continuing growth, we are seeking a Security Engineer focused on securing and monitoring a Microsoft 365–centric environment. This role is responsible for detecting and responding to threats across Entra ID (Azure AD), Microsoft Defender, Intune-managed endpoints, and Microsoft 365 services including Exchange Online, SharePoint, and Teams.</p><p>You will play a key role in improving visibility, strengthening access controls, and building scalable detection and response capabilities across cloud and endpoint systems.</p><p><br></p><p><strong>Who we are:</strong></p><p>Platform Accounting Group is a rapidly growing professional services firm providing tax, accounting, assurance, IT consulting, and wealth management services to small and medium sized businesses and their owners. We currently have 50+ offices across 15 states with much more growth on the horizon. Enjoy a professional and dynamic work environment while making work/life balance a priority.</p><p><br></p><p><strong>What you will do:</strong></p><ul><li>Monitor and investigate alerts across Microsoft Defender (Defender for Endpoint, Defender for Identity, Defender for Office 365) and associated security platforms</li><li>Analyze Entra ID (Azure AD) sign-in logs, audit logs, and risky sign-in activity to identify potential account compromise or misuse</li><li>Respond to security incidents involving endpoints, identities, email, and collaboration platforms</li><li>Tune and optimize detection rules, alert thresholds, and signal-to-noise ratios within SIEM and Microsoft security tools</li><li>Perform log analysis and basic threat hunting using tools such as Microsoft Sentinel, Defender Advanced Hunting, and audit logs</li><li>Implement and validate Conditional Access policies, MFA enforcement, and identity protection controls</li><li>Support endpoint security through Intune and Defender for Endpoint, including policy enforcement, device compliance, and response actions</li><li>Collaborate with IT to harden Microsoft 365 configurations (Exchange Online, SharePoint, Teams) and reduce attack surface</li><li>Support vulnerability management by identifying gaps and coordinating remediation across systems and endpoints</li><li>Maintain clear and audit-ready documentation of incidents, controls, and response activities</li><li>Assist with eDiscovery, audit requests, and compliance-related investigations when required</li><li>Identify gaps in monitoring, coverage, or controls and recommend improvements to security architecture</li></ul><p><strong>What we look for:</strong></p><p>Core Knowledge & Experience</p><ul><li>Strong understanding of Microsoft 365 security architecture, including Entra ID, Exchange Online, SharePoint, and Teams</li><li>Experience with Microsoft Defender security stack (Defender for Endpoint, Office 365, Identity, or Cloud Apps)</li><li>Familiarity with identity security concepts such as MFA, Conditional Access, and identity risk</li><li>Experience with endpoint management and security using Microsoft Intune or similar platforms</li><li>Working knowledge of incident response processes and common attack techniques (phishing, credential abuse, lateral movement)</li></ul><p>Technical Skills (One or More of the Following)</p><ul><li>Log analysis and threat hunting using Microsoft Sentinel or Defender Advanced Hunting (KQL experience preferred)</li><li>Experience configuring and tuning alerts in SIEM, EDR, or cloud-native security tools</li><li>Scripting or automation using PowerShell, KQL, or Python</li><li>Experience with email security, phishing analysis, and investigation within Exchange Online</li></ul><p>Operational & Behavioral Skills</p><ul><li>Ability to investigate and document security incidents with clarity and precision</li><li>Strong communication skills with both technical and non-technical stakeholders</li><li>Ability to collaborate across IT, infrastructure, and compliance teams</li><li>Strong ownership mindset and ability to drive issues through resolution</li><li>Continuous learning mindset with interest in cloud security and advanced detection</li></ul><p>Preferred, but Not Required</p><ul><li>Experience with Microsoft Purview (compliance, audit, or eDiscovery)</li><li>Familiarity with regulatory or compliance frameworks (e.g., SOC 2, GLBA, HIPAA)</li><li>Exposure to automation, detection engineering, or security orchestration (SOAR)</li><li>Experience supporting security operations in a cloud-first or hybrid environment</li><li>Experience with AVD and Azure infrastructure </li></ul><p><strong>What we offer:</strong></p><ul><li>Opportunity for advancement within a rapidly growing professional services firm</li><li>Competitive compensation</li><li>401(k) and medical benefits</li></ul>",
"jsonld_jobposting": {
"@type": "JobPosting",
"title": "Security Engineer (Microsoft 365 Security & Detection)",
"@context": "https://schema.org",
"datePosted": "2026-05-26T22:10:20-05:00",
"description": "<p>Description</p><p>Due to continuing growth, we are seeking a Security Engineer focused on securing and monitoring a Microsoft 365–centric environment. This role is responsible for detecting and responding to threats across Entra ID (Azure AD), Microsoft Defender, Intune-managed endpoints, and Microsoft 365 services including Exchange Online, SharePoint, and Teams.</p><p>You will play a key role in improving visibility, strengthening access controls, and building scalable detection and response capabilities across cloud and endpoint systems.</p><p><br/></p><p><strong>Who we are:</strong></p><p>Platform Accounting Group is a rapidly growing professional services firm providing tax, accounting, assurance, IT consulting, and wealth management services to small and medium sized businesses and their owners. We currently have 50+ offices across 15 states with much more growth on the horizon. Enjoy a professional and dynamic work environment while making work/life balance a priority.</p><p><br/></p><p><strong>What you will do:</strong></p><ul><li>Monitor and investigate alerts across Microsoft Defender (Defender for Endpoint, Defender for Identity, Defender for Office 365) and associated security platforms</li><li>Analyze Entra ID (Azure AD) sign-in logs, audit logs, and risky sign-in activity to identify potential account compromise or misuse</li><li>Respond to security incidents involving endpoints, identities, email, and collaboration platforms</li><li>Tune and optimize detection rules, alert thresholds, and signal-to-noise ratios within SIEM and Microsoft security tools</li><li>Perform log analysis and basic threat hunting using tools such as Microsoft Sentinel, Defender Advanced Hunting, and audit logs</li><li>Implement and validate Conditional Access policies, MFA enforcement, and identity protection controls</li><li>Support endpoint security through Intune and Defender for Endpoint, including policy enforcement, device compliance, and response actions</li><li>Collaborate with IT to harden Microsoft 365 configurations (Exchange Online, SharePoint, Teams) and reduce attack surface</li><li>Support vulnerability management by identifying gaps and coordinating remediation across systems and endpoints</li><li>Maintain clear and audit-ready documentation of incidents, controls, and response activities</li><li>Assist with eDiscovery, audit requests, and compliance-related investigations when required</li><li>Identify gaps in monitoring, coverage, or controls and recommend improvements to security architecture</li></ul><p><strong>What we look for:</strong></p><p>Core Knowledge & Experience</p><ul><li>Strong understanding of Microsoft 365 security architecture, including Entra ID, Exchange Online, SharePoint, and Teams</li><li>Experience with Microsoft Defender security stack (Defender for Endpoint, Office 365, Identity, or Cloud Apps)</li><li>Familiarity with identity security concepts such as MFA, Conditional Access, and identity risk</li><li>Experience with endpoint management and security using Microsoft Intune or similar platforms</li><li>Working knowledge of incident response processes and common attack techniques (phishing, credential abuse, lateral movement)</li></ul><p>Technical Skills (One or More of the Following)</p><ul><li>Log analysis and threat hunting using Microsoft Sentinel or Defender Advanced Hunting (KQL experience preferred)</li><li>Experience configuring and tuning alerts in SIEM, EDR, or cloud-native security tools</li><li>Scripting or automation using PowerShell, KQL, or Python</li><li>Experience with email security, phishing analysis, and investigation within Exchange Online</li></ul><p>Operational & Behavioral Skills</p><ul><li>Ability to investigate and document security incidents with clarity and precision</li><li>Strong communication skills with both technical and non-technical stakeholders</li><li>Ability to collaborate across IT, infrastructure, and compliance teams</li><li>Strong ownership mindset and ability to drive issues through resolution</li><li>Continuous learning mindset with interest in cloud security and advanced detection</li></ul><p>Preferred, but Not Required</p><ul><li>Experience with Microsoft Purview (compliance, audit, or eDiscovery)</li><li>Familiarity with regulatory or compliance frameworks (e.g., SOC 2, GLBA, HIPAA)</li><li>Exposure to automation, detection engineering, or security orchestration (SOAR)</li><li>Experience supporting security operations in a cloud-first or hybrid environment</li><li>Experience with AVD and Azure infrastructure </li></ul><p><strong>What we offer:</strong></p><ul><li>Opportunity for advancement within a rapidly growing professional services firm</li><li>Competitive compensation</li><li>401(k) and medical benefits</li></ul>",
"jobLocation": {
"@type": "Place",
"address": {
"@type": "PostalAddress",
"postalCode": "84121",
"addressRegion": "UT",
"addressCountry": "US",
"addressLocality": "Holladay"
}
},
"hiringOrganization": {
"logo": "https://recruiting.paylocity.com/recruiting/jobs/GetLogoFile?moduleId=21121",
"name": "Platform Accounting Group",
"@type": "Organization"
}
},
"requirements_html": null,
"requirements_text": null
},
"list_job": {
"JobId": 4165183,
"IsRemote": true,
"JobTitle": "Security Engineer (Microsoft 365 Security & Detection)",
"IsInternal": false,
"Description": "",
"JobLocation": {
"Zip": "84121",
"City": "Holladay",
"Name": "Holladay, UT",
"Metro": null,
"State": "UT",
"County": null,
"Address": null,
"Country": "USA",
"Address2": null,
"ModuleId": 21121,
"LocationId": 4090294,
"SmartyAddressId": "0e6375bb-41b8-4f6f-8ab3-ce16cc79d210"
},
"LocationName": "Holladay, UT",
"PublishedDate": "2026-05-26T17:10:20-05:00",
"HiringDepartment": null,
"IndeedRemoteType": 2,
"ShouldDisplayLocation": true
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/9fe2cd6b7060678edaa981c4c7e5303f0d498734?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/5021ed4f-48e6-44f0-bce3-c76d2053b024JSONGET https://api.bluedoor.sh/job-postings/v1/sources/4762d63c-ec9c-43e7-a369-06df97b43096JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/9fe2cd6b7060678edaa981c4c7e5303f0d498734/eventsJSON