Workspace Security Engineer - Remote- 7k- FS

In this position you will...

Secure and optimize our digital workplace by managing collaboration platforms and ensuring endpoint compliance across all user devices. You'll play a key role in enforcing Zero Trust principles and protecting sensitive data in a hybrid work environment.

You will be responsible for...

• Securing and managing Microsoft 365 collaboration tools, with a focus on data protection and compliance.
• Enforcing identity-based access to collaboration tools through Microsoft Entra Conditional Access - aligning device compliance, MFA, and risk signals with Zero Trust access policies.
• Governing external sharing and data access across Teams, SharePoint, and OneDrive—configuring sharing controls, sensitivity labels, and guest-access policies to prevent oversharing of sensitive information.
• Administering and enforcing endpoint security policies across Windows, macOS and Linux devices using MDM, MAM and EDR solutions.
• Implementing and maintaining device hardening standards to ensure endpoint compliance and reduce attack surfaces.
• Managing and optimizing Microsoft Purview Data Loss Prevention (DLP) policies to prevent data leakage across endpoints and collaboration tools.
• Enforcing Endpoint Privilege Management (EPM) controls to limit and monitor elevated access on endpoints.
• Configuring and maintaining web browser hardening policies to reduce exposure to web-based threats.
• Implementing web content filtering to block access to malicious or non-compliant websites.
• Monitoring device compliance posture and remediating non-compliant endpoints through automation and policy enforcement.
• Collaborating with IT teams to align endpoint and workspace security with organizational standards.
• Securing the use of AI tools and features by enforcing usage policies, monitoring data exposure risks, and integrating AI governance controls.
• Championing safe, productive adoption of approved AI assistants (e.g., Microsoft 365 Copilot) across the workspace - guiding colleagues on responsible use and embedding guardrails that let the business move fast without increasing risk.

You will require the following qualifications and skills

• At least 5 years of proven experience in endpoint security, device compliance, and workplace security engineering.
• Hands-on expertise with Microsoft Intune, Microsoft Defender for Endpoint, and Microsoft Purview DLP.
• Strong understanding of Windows, Linux and macOS hardening techniques and compliance frameworks.
• Familiarity with browser security configurations and enterprise policy enforcement.
• Knowledge of securing AI tools and applying governance controls in enterprise environments.
• Practical fluency with enterprise AI assistants (e.g., Microsoft 365 Copilot), including effective prompting and an understanding of their data-handling, privacy, and risk implications.
• Proficiency in scripting (e.g., PowerShell, Bash, or Python) for automation and policy deployment.
• Strong analytical and troubleshooting skills with attention to detail.
• Excellent communication and collaboration skills across technical and non-technical teams.
• Degree in Computer Science or a related field.
• Relevant security certifications are an advantage - ideally role-aligned credentials such as Microsoft SC-200, SC-300, or MD-102 (Endpoint Administrator), or CompTIA Security+; broader certifications such as CISSP or CCSP are also a plus.

For you to be successful...

• You are passionate about Cybersecurity and excited to master the latest trends in technology.
• You are self-driven and able to think outside-in. You like to take a risk-based approach rather than only aiming for compliance when it comes to security.
• You have a strong understanding of endpoint security, device compliance, and modern workplace technologies.
• You are detail-oriented, proactive, and comfortable working cross-functionally across IT, compliance, and security teams including global stakeholders across different regions, cultures, and time zones. You can translate security requirements into practical, scalable solutions that support business productivity.
• You actively use AI in your own work—leveraging approved AI and Copilot tools to work faster and smarter, while applying sound judgment to validate AI-generated output before relying on it.

Argyll Scott Asia is acting as an Employment Business in relation to this vacancy.