2

Remote Microsoft Defender Jobs in Portland, OR (NOW HIRING)

Remote Microsoft Defender information

See Portland, OR salary details

$31.3K

$106.8K

$205.2K

How much do remote microsoft defender jobs pay per year?

As of Jul 17, 2026, the average yearly pay for remote microsoft defender in Portland, OR is $106,764.00, according to ZipRecruiter salary data. Most workers in this role earn between $71,600.00 and $132,600.00 per year, depending on experience, location, and employer.

What is a Remote Microsoft Defender job?

A Remote Microsoft Defender job typically involves working with Microsoft's security solutions, such as Microsoft Defender for Endpoint, to protect organizations from cyber threats. Professionals in this role monitor security alerts, investigate incidents, and implement threat prevention measures while working remotely. They may also provide guidance on best practices, configure security policies, and ensure compliance with organizational standards. This position requires strong knowledge of cybersecurity, Microsoft products, and remote collaboration tools.

What are the key skills and qualifications needed to thrive as a Remote Microsoft Defender specialist, and why are they important?

To excel as a Remote Microsoft Defender specialist, you need a strong background in cybersecurity, threat analysis, and endpoint protection, typically supported by relevant IT degrees and certifications like Microsoft Certified: Security Operations Analyst Associate. Familiarity with Microsoft Defender suite, Azure Security Center, SIEM tools, and incident response platforms is essential. Strong problem-solving, communication, and analytical skills help you effectively identify and respond to security threats while collaborating with remote teams. These competencies are crucial for proactively mitigating risks and maintaining robust security across distributed environments.

How does a Remote Microsoft Defender specialist typically collaborate with IT and security teams across different locations?

A Remote Microsoft Defender specialist works closely with both centralized and distributed IT and cybersecurity teams to monitor, analyze, and respond to potential threats. Collaboration often involves daily virtual meetings, shared dashboards, and ticketing systems to coordinate incident responses and ensure consistent security practices across the organization. Regular communication is key, as specialists must provide timely updates, share findings, and recommend actions to minimize risks. This remote structure requires strong documentation skills and the ability to work independently while remaining highly responsive to team needs.

What is the difference between Remote Microsoft Defender vs Remote Security Analyst?

AspectRemote Microsoft DefenderRemote Security Analyst
CertificationsMicrosoft Certified: Security, Compliance, and Identity Fundamentals, Microsoft Certified: Security Operations Analyst AssociateCompTIA Security+, CISSP, GIAC Security Essentials
Work EnvironmentPrimarily focused on managing Microsoft security tools and cloud security within Microsoft ecosystemsBroader security monitoring, incident response, and risk assessment across various platforms
Industry UsageUsed mainly in organizations leveraging Microsoft products and cloud servicesUsed across diverse industries requiring security monitoring and threat analysis

Remote Microsoft Defender roles focus on managing Microsoft security solutions, while Remote Security Analysts perform broader security monitoring and incident response across multiple platforms. Both roles require security certifications but differ in scope and tools used.

What are popular job titles related to Remote Microsoft Defender jobs in Portland, OR? For Remote Microsoft Defender jobs in Portland, OR, the most frequently searched job titles are:
What job categories do people searching Remote Microsoft Defender jobs in Portland, OR look for? The top searched job categories for Remote Microsoft Defender jobs in Portland, OR are:

Cybersecurity Specialist 3

BizTek People, Inc. | APA International Placement Consultants

Portland, OR โ€ข Remote

$110 - $118/hr

Full-time

Re-posted 27 days ago


Job description

Job Description

Our utility industry client is seeking an Allowlisting Security Specialist to support security initiatives and ongoing cybersecurity programs. This role will focus on securing Windows and Linux environments, automating security processes while supporting broader cybersecurity initiatives and secure system design.


Scope

The scope includes working with members of the IT&S (Information Technology and Services) Department to:

  • Design, implement, and maintain enterprise application allowlisting policies in IT and OT environments
  • Implement and manage AppLocker policies for Windows environments
  • Deploy and tune Microsoft Defender Application Control (WDAC / App Control for Business)
  • Deploy and manage Red Hat fapolicyd for Linux systems
  • Define trusted sources using publisher, hash, and path rules
  • Integrate logs into SIEM tools such as Splunk for monitoring and alerting
  • Develop automation using Group Policy, Intune, and Ansible
  • Reduce attack surface by enforcing default-deny execution controls
  • Collaborate with multiply teams to onboard systems and software into allowlisting
  • Support governance boards (ARB, TRB, CAB) and documentation requirements


Deliverables

  • Allowlisting policy framework and standards
  • AppLocker, WDAC, and fapolicyd configurations
  • Automation scripts and deployment guides
  • Documentation for audits and compliance
  • Metrics and reporting on allowlisting effectiveness
  • Consult with project team and other stakeholders, e.g., IT practitioners, the Cybersecurity and Compliance teams, Enterprise Architecture, Applications, Infrastructure, Network, Database, OCM, etc. during testing and implementation.
  • All changes will follow the Change management policies and procedures.


Requirements

Key Skills and Qualifications

  • 4+ years of practical cybersecurity or endpoint security experience.
  • Hands-on experience with:

    • Microsoft Applocker

    • Application Control for Business/Windows Defender Application control (ACFB/WDAC)

    • Red Hat fapolicyd and satellite
  • Experience with SIEM tools (e.g., Splunk) for log analysis and alerting
  • Experience with Intune and MDE integration
  • Industry cybersecurity and technology certifications are a plus.
  • Experience working in a regulated utility environment is a plus.
  • Experience working in a remote, cross functional team, with the ability to drive the scope of work.
  • Ability to lead work effort with little day to day supervision. Ability to work through ambiguity and escalate issues to maintain project momentum.
  • Excellent interpersonal skills, including collaboration, facilitation, and negotiation.