Cyber Security Senior Analyst - MDE

1)        MDE Platform Administration (Tenant-Level)

2)      Server Onboarding & Offboarding (Windows & Linux)

a.       Design and operate scalable onboarding processes:

                                                               i.      Windows Server: MECM/SCCM, GPO, Intune, Azure Arc, scripts; ensure Sense EDR sensor and Defender Antivirus are properly configured (including passive mode transitions if 3rd-party AV present).

                                                             ii.      Linux Server: Package-based installs (mdatp via apt/yum/zypper), onboarding scripts, repo configuration, proxy settings, and service validation.

b.      Maintain golden images / AMIs with pre-onboarding steps, device tagging, and machine groups.

c.       Operate offboarding flows (offboarding package/keys) for decom, M&A carve-outs, and cloud auto-scale lifecycles; reconcile stale/duplicate devices.

d.      Track coverage: % of in-scope servers onboarded, health status, and remediation of inactive/unhealthy devices.

3)      Policy, Exclusions & Hardening

a.       Define/maintain AV policies, EDR in block mode, Attack Surface Reduction (ASR) rules, Network Protection, Controlled Folder Access (where server-appropriate).

b.      Implement file/path/process exclusions with risk-based justification, balancing performance and detection efficacy; periodic review, attestation, and removal of stale exceptions.

c.       Manage Indicators (IOCs), custom URL/Domain/IP indicators, and controlled testing with robust change control.

4)      Operations & Support

a.       Operate day-to-day MDE tool support: ticket queue, troubleshooting onboarding/health/AV conflicts, performance tuning, and sensor/engine update issues.

b.      Partner with SOC/IR on incidents; drive endpoint containment, isolation support, evidence capture, and post-incident hardening actions.

5)      Automation & Scale

a.       Build automation with PowerShell, Bash, Azure Automation, Azure DevOps/GitHub Actions, M365 Defender/Graph APIs

a { text-decoration: none; color: #464feb; } tr th, tr td { border: 1px solid #e6e6e6; } tr th { background-color: #f5f5f5; }

We’re seeking a hands-on MDE Platform Engineer to administer Microsoft Defender for Endpoint across Windows and Linux server estates. You will own the MDE platform in our Azure/M365 tenant, ensure secure and compliant onboarding/offboarding of servers at scale, and manage EDR + Defender Antivirus policies, exceptions, ASR, EDR in block mode, sensor health and agent update rings. The ideal candidate brings deep operational experience with MDE on servers, automation-first mindset, and strong collaboration with Infra, SOC, and platform teams.

“We are committed to creating a diverse environment and are proud to be an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status”.

Why Join Us

We are committed to creating a diverse environment and are proud to be an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status”.

 Business Insight

At Société Générale, we are convinced that people are drivers of change, and that the world of tomorrow will be shaped by all their initiatives, from the smallest to the most ambitious. Whether you’re joining us for a period of months, years or your entire career, together we can have a positive impact on the future. Creating, daring, innovating, and taking action are part of our DNA. If you too want to be directly involved, grow in a stimulating and caring environment, feel useful on a daily basis and develop or strengthen your expertise, you will feel right at home with us!

Still hesitating?

You should know that our employees can dedicate several days per year to solidarity actions during their working hours, including sponsoring people struggling with their orientation or professional integration, participating in the financial education of young apprentices, and sharing their skills with charities. There are many ways to get involved.

We are committed to support accelerating our Group’s ESG strategy by implementing ESG principles in all our activities and policies. They are translated in our business activity (ESG assessment, reporting, project management or IT activities), our work environment and in our responsible practices for environment protection.