Description Position at MacAllister Machinery
Position SummaryThe Manager - Security & Microsoft Platforms provides strategic leadership, governance, and operational oversight for enterprise cybersecurity, identity, and Microsoft platforms, including Microsoft 365, Entra ID, Active Directory, Microsoft cloud and enterprise platforms. This role is accountable for delivering secure, reliable, and business-aligned services while leading threat detection, incident response, and identity governance capabilities.
The position balances long-term security strategy and program maturity with operational performance, ensuring platform stability, effective risk management, and a consistent end-user experience across identity and productivity services. This role is accountable for identity, endpoint management, Microsoft platform services, and enterprise cybersecurity, ensuring secure and compliant delivery of end-user and platform capabilities.
Position Duties/ResponsibilitiesPrimary Responsibilities:
- Own and govern Microsoft platforms and supporting Azure services (excluding infrastructure-level IaaS owned by Infrastructure), including Microsoft 365, Entra ID, and Active Directory, ensuring security, stability, performance, and alignment with business and compliance requirements.
- Lead the security operations lifecycle, including monitoring, threat detection, incident response, and post-incident analysis, while maturing response capabilities, playbooks, and forensics readiness and providing leadership serving as the escalation and decision authority during high-risk security events.
- Own and manage identity and access management, including Active Directory, Entra ID, MFA, Conditional Access, and privileged access governance, ensuring security, compliance, and audit readiness.
- Own endpoint management strategy and operations, including Microsoft Intune, device configuration, compliance policies, patching standards, and lifecycle management.
- Own and manage Microsoft platform service performance, configuration, and availability from a platform perspective, ensuring alignment with user experience and productivity.
- Serve as the owner of security incident response, including detection, investigation, containment, eradication, and post-incident recovery.
- Define, implement, and enforce enterprise security policies, standards, and governance frameworks across systems, platforms, and data. Partner with Infrastructure to ensure effective implementation of security controls across systems and networks.
- Define, track, and report on SLAs, KPIs, and service metrics aligned to IT and business objectives across security, identity, and Microsoft platforms to ensure reliability, user experience, and risk reduction.
- Collaborate with Infrastructure, Help Desk, and business teams to deliver secure, user-centric platform services and drive Microsoft platform adoption aligned with business workflows.
- Develop and maintain multi-year roadmaps for security, identity, and Microsoft platforms aligned with business objectives, risk tolerance, and compliance requirements.
- Lead risk management activities including assessments, vulnerability management, and control validation, while continuously maturing the enterprise cybersecurity program.
- Drive governance and adoption of Microsoft extensibility platforms, including Power Platform and Purview, ensuring compliance and minimizing risk from unmanaged user-driven solutions.
- Maintain documentation, runbooks, and operational standards while driving automation and continuous improvement to increase efficiency and consistency.
- Lead security awareness, training, and communication efforts to promote a security-first culture and ensure organizational alignment with security practices.
- Manage security tools, vendors, and external partners, including evaluation, performance management, and alignment with the organization's security strategy.
- Own Microsoft licensing strategy, governance, and optimization, including Microsoft 365, Azure, and security licensing models, ensuring alignment with business needs, cost efficiency, and security requirements.
- Partner with IT leadership and Finance to manage licensing agreements, renewals, and cost optimization initiatives, providing technical guidance, consumption insights, and risk/impact analysis.
- Operate as a service owner within defined domain responsibilities, ensuring accountability for service performance, reliability, user experience, and continuous improvement.
- Participate in enterprise change management processes, ensuring coordination, communication, and risk management across all IT changes.
- Collaborate across IT teams while maintaining clear ownership boundaries to ensure efficient and accountable service delivery.
Supervisory Responsibilities:
- Direct supervision of technical staff.
- Ensure appropriate staffing and coverage for security operations, including on-call support and incident response readiness.
- Provide leadership, coaching, and career development for team members.
- Establish performance goals, accountability standards, and professional development plans.
- Monitor and evaluate team performance, providing regular feedback and driving continuous improvement.
- Coordinate workloads, prioritize activities, and ensure effective resource allocation across the team.
- Establish and track team performance metrics, including SLAs and KPIs, to ensure alignment with organizational objectives.
- Ensure effective staffing and coverage for security operations and incident response, including escalation and critical event support.
- Partner with Infrastructure and Help Desk leadership to align support models, escalation processes, and service level expectations.
Position RequirementsRequired:
- Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent work experience
- 8-10 years of experience in IT security, identity management, or Microsoft cloud platforms
- Minimum of 5 years of leadership or supervisory experience
- Experience in security operations, incident response, and risk management
- Experience with Microsoft 365, Active Directory, and identity/access management
Preferred:
- Industry certifications such as CISSP, CISM, or equivalent
- Microsoft security certifications (e.g., SC-300, SC-200, or equivalent)
- Microsoft 365 certified: Enterprise Administrator Expert
- Teams Administrator Associate (MS-700)
- Identity and Access Administrator (SC-300)
- Experience with cloud security, identity governance, and compliance frameworks
- ITIL Foundation or similar process framework
Knowledge, Skills, And AbilitiesThe requirements listed below are representative of the knowledge, skills, and/or abilities required to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions
- Strong understanding of cybersecurity, identity, access management, and Microsoft enterprise platforms (Azure, Microsoft 365, Entra ID, Active Directory), including security architecture, controls, risk management, and governance within hybrid environments.
- Strong understanding of endpoint management (Intune), device compliance, and modern workplace security controls.
- Ability to lead forensic analysis and post-incident review processes, including root cause identification and control improvements.
- Strong analytical and decision-making skills to assess threats, vulnerabilities, and risks, prioritize response efforts, and guide mitigation strategies.
- Ability to balance security, usability, and operational efficiency while managing both long-term strategy and real-time incident response demands.
- Ability to lead incident response efforts, define and monitor security metrics and risk indicators, and drive continuous improvement in security posture and response effectiveness.
- Ability to communicate security risks, incidents, and technical concepts to technical and non-technical stakeholders while building trust across IT and business teams.
- Process-oriented with a focus on governance, standardization, and cross-functional collaboration to deliver secure and reliable technology services.
- Strong understanding of Microsoft licensing models (M365, Azure, security workloads), including cost drivers, optimization strategies, and alignment to security and compliance outcomes.
- Ability to analyze platform consumption, licensing utilization, and cost trends to drive optimization, forecast demand, and support financial planning decisions.
- Understanding of end-user productivity services and how platform design, performance, and configuration impact business operations and user experience.
- Ability to lead security and technical teams, manage priorities, and drive accountability for service performance and incident response outcomes.
- Ability to make sound decisions under risk and incident pressure, ensuring appropriate response and mitigation while balancing risk, service performance, and user impact.
- Strong focus on service quality and customer experience, with understanding of how technology impacts business operations.
- Ability to operate as a service owner, ensuring accountability for platform reliability, performance, user experience, and continuous improvement.
- Ability to handle sensitive security and incident-related information with discretion
Other Requirements of Position- Works under limited supervision. Independently determines the approach to take and the methods to use. Interprets policy in terms of objectives. Informs manager of unusual situations with far reaching implications.
- Major responsibilities typically require creativity and latitude. Employee typically operates with specific objectives but often few written or unwritten procedures as guidelines. Some policies or precedents for action exist.
- If an error is made while in this position, it will require some effort to identify the error and can moderately impact the company financially
- Frequently communicates with management, coworkers, and vendors
- Maintains equipment and supplies to avoid waste, damage to areas and equipment, and to prevent accidents
The duties and responsibilities outlined in this posting are not exhaustive and may evolve based on business needs.