Security Specialist

About the job
Hiring: Public Sector Security– Microsoft 365 / Defender/Security Specialist

Engagement type: Temporary, 2 months with potential of extension
Work model: Hybrid – 3 days in office, 2 days remote
Public sector experience: Nice to have
Compensation: $65.00-$75.00 per hour
Stafingo is hiring for their public sector client in Ontario, a temporary external security resource for an initial two-month engagement. This role provides focused support for an upcoming Microsoft-led security assessment and related follow-up activities.

This position is short-term and specialized, focusing on improving Microsoft security posture, developing implementation plans, and strengthening access control and RBAC best practices.

Key Responsibilities:

Serve as the primary technical liaison to support the Microsoft security assessment initiative, including preparation, coordination, and follow-up activities.
Participate in assessment sessions and workshops with Microsoft and internal stakeholders.
Review assessment findings, recommendations, and deliverables provided by Microsoft.
Support internal teams in understanding identified security gaps, risks, and recommended improvements.
Review Microsoft Defender security score and control posture across relevant workloads.
Identify priority improvement areas based on Microsoft recommendations and organizational risk context.
Develop phased implementation plans to address identified security score gaps.
Track recommended action items and support execution in collaboration with internal teams.
Review current RBAC configurations across Microsoft 365, Entra ID, and relevant Azure services; assess alignment with least privilege principles and Microsoft best practices.
Assess and improve Microsoft Intune security configurations to strengthen endpoint posture, including device compliance policies, configuration profiles, endpoint protection settings, and attack surface reduction controls.
Identify security gaps, risks, and propose prioritized remediation plans.
Required Skills & Experience:

Minimum 5 years of experience in Cybersecurity or Information Security roles.
Hands-on experience with Microsoft Defender and Intune, including security posture management.
Strong working knowledge of Microsoft Entra ID, Azure RBAC, and role-based access control design following least privilege principles.
Experience supporting or responding to security assessments, audits, or posture reviews, including tracking and addressing recommended actions.
Ability to work closely with IT and security teams in a controlled enterprise environment.
Strong written and verbal communication skills; able to document findings, recommendations, and implementation plans clearly.
Degree or diploma in Information Security, Computer Science, Information Systems, Engineering, or a related field, or equivalent practical experience.
Cybersecurity certifications focused on Microsoft Azure and Microsoft 365 security are preferred.
Interested?

If interested, please apply to the job posting directly or send your resume to harpreet@stafingo.com for immediate consideration.