Security Engineer - Microsoft 365 Security Administration

Truveta provides unprecedented real-world data and real-time intelligence, powered by a dataset built with and owned by US health systems united in a mission of Saving Lives with Data. Together, we power breakthrough medical discoveries, accelerate regulatory-grade evidence, and improve patient care. Today, Truveta enables research on more than 130 million de-identified patients across the US.     Achieving Truveta’s ambitious mission requires an incredible team of talented and inspired people with a special combination of health, software and big data experience who share our  company values .     Role Overview   We are looking for a  Security Engineer for Microsoft 365 Security Administration  to lead the security, governance, and protection of Microsoft 365 security and collaboration platforms, including Exchange Online, Microsoft Teams, OneDrive for Business, and Microsoft 365 Copilot. This role focuses on securing identities, protecting sensitive data, strengthening threat detection and response capabilities, and ensuring compliance with security best practices. You will work closely with IT and other security teams to improve security posture and drive the adoption of Microsoft security solutions.      Responsibilities       Microsoft 365 Security Administration     Administer, configure, and  maintain  Microsoft 365 security and collaboration platforms, including Exchange Online, Microsoft Teams, OneDrive for Business, and Microsoft 365 Copilot    Manage and enforce security policies across Microsoft 365 services, including email protection, collaboration controls, data sharing, retention, and compliance settings    Configure and  maintain  Microsoft Defender for Office 365, Exchange Online Protection (EOP), Safe Links, Safe Attachments, anti-phishing, and anti-spam policies    Monitor Microsoft 365 environments for suspicious activity, unauthorized access, risky behavior, and security posture gaps    Administer secure collaboration and external sharing controls for Microsoft Teams and OneDrive for Business    Support secure deployment, governance, and operational oversight of Microsoft 365 Copilot, including data access controls, compliance considerations, and AI security best practices    Review and remediate Microsoft Secure Score recommendations and continuously improve Microsoft 365 security posture    Maintain tenant configuration standards, governance documentation, operational procedures, and security baselines    Ensure Microsoft 365 services  comply with  organizational security, privacy, retention, and regulatory requirements        Incident Response & Security Operations     Investigate and respond to Microsoft 365-related security incidents, including phishing, account compromise, malicious email activity, unauthorized sharing, and insider threats    Act as an escalation point for complex Microsoft 365 security and administration issues    Participate in incident response activities related to Exchange Online, Teams, OneDrive, Entra ID, and Microsoft Defender    Support audit, compliance, eDiscovery, and forensic investigations within Microsoft 365 environments    Maintain detailed documentation of incidents, remediation activities, and operational changes    Contribute to security awareness initiatives and help educate users on secure collaboration and Microsoft 365 best practices        Security Monitoring & Automation     Monitor Microsoft 365 security alerts, audit logs, and Defender incidents to  identify  and respond to threats  in a timely manner     Develop and  maintain  reporting, dashboards, and alerting for Microsoft 365 security and operational visibility    Automate routine administrative and security tasks using PowerShell, Microsoft Graph API, and native Microsoft 365 automation capabilities    Support integration of Microsoft 365 logs and alerts into SIEM/SOAR platforms such as Microsoft Sentinel    Assist  with development and tuning of alerting, policies, and workflows to reduce operational overhead and improve detection accuracy        Governance, Compliance & Collaboration     Partner with infrastructure, identity, compliance, and security teams to implement and  maintain  secure Microsoft 365 solutions    Support Data Loss Prevention (DLP), retention policies, sensitivity labels, and information protection initiatives across Microsoft 365 workloads    Assist  with license management, service optimization, and adoption of Microsoft 365 security and compliance capabilities    Participate in Microsoft 365 governance reviews, audits, risk assessments, and remediation activities    Contribute to operational process improvements, documentation, and platform standardization efforts        Con