ZipRecruiter

Log In

1

Microsoft Defender Edr Jobs (NOW HIRING)

Na Oiwi Kane

Senior Cybersecurity Engineer

Washington, DC · Hybrid

$137K - $142K/yr

Deploy and operationally manage Microsoft Defender EDR, IDS/IPS solutions, and Azure/M365 security controls in the hybrid production environment * Lead implementation and sustainment of vulnerability ...

Kiakahi

Senior Cybersecurity Engineer

Washington, DC · Hybrid

$137K - $147K/yr

Deploy and operationally manage Microsoft Defender EDR, IDS/IPS solutions, and Azure/M365 security controls in the hybrid production environment * Lead implementation and sustainment of vulnerability ...

Kiakahi

Senior Cybersecurity Engineer

Washington, DC · Hybrid

$137K - $142K/yr

Deploy and operationally manage Microsoft Defender EDR, IDS/IPS solutions, and Azure/M365 security controls in the hybrid production environment * Lead implementation and sustainment of vulnerability ...

Kiakahi

Senior Cybersecurity Engineer

Washington, DC · On-site

$137K - $147K/yr

Deploy and operationally manage Microsoft Defender EDR, IDS/IPS solutions, and Azure/M365 security controls in the hybrid production environment * Lead implementation and sustainment of vulnerability ...

Sheppard Pratt

Senior Cybersecurity Engineer

Towson, MD · On-site

$109K - $150K/yr

Responsibilities : • Lead the engineering, configuration, deployment, and operational maintenance of the organization's cybersecurity toolset, with a primary focus on Microsoft Defender (EDR/XDR ...

Power3 Solutions

Proficient in one or more EDR platforms (Trellix HX/EDRF or Microsoft Defender for Endpoint EDR, preferably both). * Cloud Applications: Experience with cloud security and familiarity with cloud ...

Sheppard Pratt

Senior Cybersecurity Engineer

Towson, MD

$106K - $175K/yr

Lead the engineering, configuration, deployment, and operational maintenance of the organization's cybersecurity toolset, with a primary focus on Microsoft Defender (EDR/XDR, MDR), Microsoft Sentinel ...

Sheppard Pratt

Senior Cybersecurity Engineer

Towson, MD · On-site

$51.18 - $84.34/hr

Lead the engineering, configuration, deployment, and operational maintenance of the organization's cybersecurity toolset, with a primary focus on Microsoft Defender (EDR/XDR, MDR), Microsoft Sentinel ...

next page

Showing results 1-20

All JobsMicrosoft Defender Edr Jobs

Microsoft Defender Edr information

See salary details

$16

$70

$95

How much do microsoft defender edr jobs pay per hour?

As of Jun 13, 2026, the average hourly pay for microsoft defender edr in the United States is $70.17, according to ZipRecruiter salary data. Most workers in this role earn between $60.58 and $79.81 per hour, depending on experience, location, and employer.

What is the salary of Microsoft Defender engineer?

The salary of a Microsoft Defender EDR engineer varies based on experience, location, and company size, but typically ranges from $80,000 to $130,000 annually. Professionals with cybersecurity skills and certifications like CISSP or CompTIA Security+ may earn higher salaries, especially in high-demand regions.

What are the key skills and qualifications needed to thrive as a Microsoft Defender EDR Specialist, and why are they important?

To excel as a Microsoft Defender EDR Specialist, you need a solid background in cybersecurity, threat detection, and incident response, often supported by a degree in computer science or related certifications like Microsoft Certified: Security Operations Analyst Associate. Familiarity with Microsoft Defender for Endpoint, SIEM tools (like Microsoft Sentinel), and advanced analytics platforms is typically required. Strong analytical thinking, attention to detail, and effective communication help professionals investigate threats and collaborate with IT teams. These skills are vital for quickly identifying, containing, and mitigating security incidents to protect organizational assets.

What is Microsoft Defender EDR?

Microsoft Defender EDR (Endpoint Detection and Response) is a security solution that helps organizations detect, investigate, and respond to advanced threats on their endpoints. It provides real-time monitoring, behavioral analysis, and automated investigation capabilities to identify suspicious activities and attacks. Defender EDR integrates with other Microsoft security tools to provide a comprehensive defense strategy, making it easier for security teams to respond quickly to incidents and minimize potential damage.

What is an EDR job?

An EDR (Endpoint Detection and Response) job involves monitoring, analyzing, and responding to security threats on computer endpoints using specialized tools and software. Professionals in this role work to detect malicious activity, investigate security incidents, and implement measures to prevent future attacks, often requiring knowledge of cybersecurity, threat intelligence, and security protocols.

Does Microsoft Defender do EDR?

Microsoft Defender for Endpoint, which is part of Microsoft Defender, provides Endpoint Detection and Response (EDR) capabilities. It offers threat detection, investigation, and response tools to help security teams identify and mitigate advanced cyber threats. As a security professional, understanding how to configure and manage Defender's EDR features is essential for effective endpoint security.

Is Defender a good EDR?

Microsoft Defender EDR is a reputable endpoint detection and response solution integrated into Windows, offering real-time threat detection, automated response, and integration with other Microsoft security tools. It is widely used in enterprise environments and is suitable for security analysts and IT professionals managing Windows-based networks. Its effectiveness depends on proper configuration and complementary security measures.

How does a Microsoft Defender EDR specialist typically collaborate with other IT teams within an organization?

A Microsoft Defender EDR specialist frequently works alongside IT security, infrastructure, and helpdesk teams to ensure comprehensive endpoint protection. They coordinate on incident response, threat analysis, and system updates, often participating in cross-functional meetings to share insights and align on security protocols. This role also involves communicating findings from security alerts, recommending remediation steps, and helping to implement best practices across the organization. Effective collaboration is essential to quickly identify and mitigate threats while keeping all stakeholders informed.
Infographic showing various Microsoft Defender Edr job openings in the United States as of June 2026, with employment types broken down into 4% Internship, 7% Full Time, 79% Part Time, 6% Temporary, and 4% Nights. Highlights an 81% Physical, 7% Hybrid, and 12% Remote job distribution, with an average salary of $145,963 per year, or $70.2 per hour.

Senior Cybersecurity Engineer

Na Oiwi Kane

Washington, DC • Hybrid

$137K - $142K/yr

Other

Medical, Dental, Vision, Life, Retirement, PTO

Posted 7 days ago

Job description

Overview
Senior Cybersecurity Engineer
Location: Washington, DC
Salary Range $137,000 to $142,000 per year
Kiakahi LLC is looking for an experienced Senior Cybersecurity Engineer to join its team.
Security Operations & Continuous Monitoring
  • Execute security operations through centralized monitoring of system logs, endpoint activity, and network traffic using enterprise tools such as ACAS, Nessus, SCAP, and endpoint security platforms
  • Configure and maintain SIEM platforms (Microsoft Sentinel), including data connector configuration, correlation rule development and tuning, and SOAR playbook development for automated response workflows
  • Provide continuous visibility into vulnerabilities, system anomalies, and potential threats across both cloud and on-premises infrastructure
  • Conduct proactive threat hunting on a defined schedule, executing hypothesis-driven queries across the log estate to identify behavioral patterns below automated detection thresholds

Threat Detection & Incident Response
  • Perform log aggregation, correlation analysis, and validation of indicators of compromise
  • Coordinate containment, investigation, and remediation actions when potential incidents are identified
  • Isolate affected systems, validate system integrity, and document all actions to support reporting and compliance requirements
  • Execute incident response activities in accordance with the NIIR plan
  • Security Tool Administration
  • Deploy and operationally manage Microsoft Defender EDR, IDS/IPS solutions, and Azure/M365 security controls in the hybrid production environment
  • Lead implementation and sustainment of vulnerability management and centralized log management solutions
  • Integrate CDM program tools with Microsoft Sentinel as additional telemetry sources for continuous monitoring posture reporting
  • Configure Syslog aggregation pipelines from on-premises network and server infrastructure

Regulatory Compliance & Framework Implementation
  • Apply NIST SP 800-37 RMF methodology across Defense, Intelligence, and Civilian frameworks
  • Support FISMA compliance through implementation of NIST SP 800-53 control families and continuous monitoring under NIST SP 800-137
  • Monitor CISA guidance channels for new Binding Operational Directives (BODs) and Emergency Directives, assessing applicability within five business days
  • Develop and maintain System Security Plans (SSPs) and Security Control Traceability Matrices (SCTMs)

Requirements
Experience
This position requires the candidate to be a and capable of passing a National Agency Check with Investigation to obtain a Public Trust.
  • Minimum six (6) continuous years of experience in cybersecurity engineering and security operations
  • Senior-level proficiency with direct, hands-on experience with the following technologies:
  • SIEM platforms (Microsoft Sentinel, Splunk)
  • SOAR tools and automated response workflows
  • NDR (Network Detection and Response)
  • EDR (Endpoint Detection and Response) - Microsoft Defender
  • Identity Management systems (Microsoft Entra ID)
  • Vulnerability scanning tools (ACAS, Tenable.SC, Nessus, SCAP)
  • Linux and Windows Server administration
  • Cisco Networking infrastructure
  • VMware virtualization environments

Technical Knowledge
  • Deep RMF expertise across Defense, Intelligence, and Civilian frameworks (NIST SP 800-37, CNSSI 1253, ICD 503)
  • Familiarity with NIST 800-series publications (800-30, 800-53, 800-137, 800-160/161) and FIPS-199/200
  • Experience with eMASS for RMF package management
  • Proficiency in DISA STIG hardening and SCAP validations

Certifications (Required/Preferred)
  • CISSP (Certified Information Systems Security Professional)
  • CompTIA SecurityX (CASP+) CE, CySA+, Security+, or equivalent
  • Additional preferred: GIAC GCCC, Navy Qualified Validator

Education
  • Bachelor's degree in Information Systems, Cybersecurity, Computer Science, or related field
  • Master's degree preferred

This position supports a small federal agency operating a hybrid IT environment consisting of:
On-premises: Cisco networking infrastructure, VMware Hypervisor (<50>
Cloud: Microsoft Azure IaaS/PaaS, Microsoft Entra ID (Azure AD), Microsoft 365 (Exchange/SharePoint/Teams)
Security Stack: Microsoft Sentinel SIEM, Defender EDR, CDM Tools
User Base: Fewer than 150 users across headquarters and distributed locations
Performance Expectations
  • Ability to operate independently with minimal oversight in a small-team federal environment
  • Immediate contribution upon onboarding with minimal ramp-up period
  • Deliver measurable improvements in detection accuracy and reduction in false positives

Physical Requirements
Work may involve sitting or standing for extended periods of time. Position may require typing and reading from a computer screen. Must have sufficient mobility, including but not limited to bending, reaching, and kneeling to complete daily duties in a timely and efficient manner. May include lifting weigh up to thirty (30) pounds as necessary.
Benefits
  • Medical, dental, vision, disability, and life insurance
  • Flexible Spending Accounts
  • 401(k)
  • PTO
  • Professional Development
  • Paid federal holidays
  • Paid Parental Leave

Company Summary
Headquartered in San Diego, CA, Kiakahi LLC is a Native Hawaiian Organization (NHO) owned SBA Small Disadvantaged Business specializing in global information technology and offering professional solutions in IT Design & Installation, Cybersecurity Engineering & Support, Application Integration & Development, Software & Hardware Engineering, Network & Systems Management, Information Systems Security, and Business Management Services.
L
Posted Salary Range
USD $137,000.00 - USD $147,000.00 /Yr.

Apply