2

Remote Microsoft Defender Jobs (NOW HIRING)

Technical Skills: - Microsoft Defender for Endpoint - Microsoft Intune endpoint and mobile device ... distributed/remote workforces. - Experience integrating endpoint tooling and metrics into ...

Remote, United States Work Authorization: US Work Authorization Required / US Citizenship Preferred ... Microsoft Purview, Microsoft Sentinel, Microsoft Defender Suite, Defender for Endpoint, Defender ...

SOC Analyst

Washington, DC ยท Remote

$50 - $55/hr

Hybrid 2 Days Onsite/3 Days Remote in Washington, DC Our client seeks a SOC Analyst to support ... Analyze alerts from EDR/XDR solutions such as Microsoft Defender. * Monitor identity-related risks ...

Full-Time, Remote in United States Position Overview We are looking for a Systems Engineer to join ... Microsoft Defender for Endpoint - onboarding, alert triage, basic KQL * Windows Server ...

Unified Governance: Implement and enforce Azure Policy, Microsoft Defender for Cloud, and ... Remote (United States)

Remote (U.S. Based) Position Overview :- We are seeking an experienced Security Operations Center ... Entra ID * Microsoft Sentinel * Microsoft Defender * Experience with CrowdStrike or similar ...

... remote team environment. This role requires the ability to lead various architecture and ... Microsoft Defender XDR * Microsoft Defender for Cloud * Microsoft Sentinel * Microsoft Security ...

next page

Showing results 1-20

Remote Microsoft Defender information

See salary details

$29.5K

$100.7K

$193.5K

How much do remote microsoft defender jobs pay per year?

As of Jul 8, 2026, the average yearly pay for remote microsoft defender in the United States is $100,673.00, according to ZipRecruiter salary data. Most workers in this role earn between $67,500.00 and $125,000.00 per year, depending on experience, location, and employer.

What is a Remote Microsoft Defender job?

A Remote Microsoft Defender job typically involves working with Microsoft's security solutions, such as Microsoft Defender for Endpoint, to protect organizations from cyber threats. Professionals in this role monitor security alerts, investigate incidents, and implement threat prevention measures while working remotely. They may also provide guidance on best practices, configure security policies, and ensure compliance with organizational standards. This position requires strong knowledge of cybersecurity, Microsoft products, and remote collaboration tools.

What are the key skills and qualifications needed to thrive as a Remote Microsoft Defender specialist, and why are they important?

To excel as a Remote Microsoft Defender specialist, you need a strong background in cybersecurity, threat analysis, and endpoint protection, typically supported by relevant IT degrees and certifications like Microsoft Certified: Security Operations Analyst Associate. Familiarity with Microsoft Defender suite, Azure Security Center, SIEM tools, and incident response platforms is essential. Strong problem-solving, communication, and analytical skills help you effectively identify and respond to security threats while collaborating with remote teams. These competencies are crucial for proactively mitigating risks and maintaining robust security across distributed environments.

How does a Remote Microsoft Defender specialist typically collaborate with IT and security teams across different locations?

A Remote Microsoft Defender specialist works closely with both centralized and distributed IT and cybersecurity teams to monitor, analyze, and respond to potential threats. Collaboration often involves daily virtual meetings, shared dashboards, and ticketing systems to coordinate incident responses and ensure consistent security practices across the organization. Regular communication is key, as specialists must provide timely updates, share findings, and recommend actions to minimize risks. This remote structure requires strong documentation skills and the ability to work independently while remaining highly responsive to team needs.

What is the difference between Remote Microsoft Defender vs Remote Security Analyst?

AspectRemote Microsoft DefenderRemote Security Analyst
CertificationsMicrosoft Certified: Security, Compliance, and Identity Fundamentals, Microsoft Certified: Security Operations Analyst AssociateCompTIA Security+, CISSP, GIAC Security Essentials
Work EnvironmentPrimarily focused on managing Microsoft security tools and cloud security within Microsoft ecosystemsBroader security monitoring, incident response, and risk assessment across various platforms
Industry UsageUsed mainly in organizations leveraging Microsoft products and cloud servicesUsed across diverse industries requiring security monitoring and threat analysis

Remote Microsoft Defender roles focus on managing Microsoft security solutions, while Remote Security Analysts perform broader security monitoring and incident response across multiple platforms. Both roles require security certifications but differ in scope and tools used.

More about Remote Microsoft Defender jobs
What cities are hiring for Remote Microsoft Defender jobs? Cities with the most Remote Microsoft Defender job openings:
What are the most commonly searched types of Microsoft Defender jobs? The most popular types of Microsoft Defender jobs are:
What states have the most Remote Microsoft Defender jobs? States with the most job openings for Remote Microsoft Defender jobs include:
What job categories do people searching Remote Microsoft Defender jobs look for? The top searched job categories for Remote Microsoft Defender jobs are:
Infographic showing various Remote Microsoft Defender job openings in the United States as of July 2026, with employment types broken down into 88% Full Time, 3% Part Time, and 9% Contract. Highlights an 100% Remote job distribution, with an average salary of $100,673 per year, or $48.4 per hour.
Cloud Incident Response Training- Contract Instructors

Cloud Incident Response Training- Contract Instructors

Cybervance, Inc

Kensington, MD โ€ข On-site, Remote

Contractor

Re-posted 28 days ago


Job description

Cloud Instructors for Cloud Incident Response Training (1099)Location: Kensington, MD Remote | 1099 Contract PositionDuration: Project based (Course specific engagements)
General Description
We are looking for experienced instructors to deliver a series of virtual Cloud Incident Response (IR) courses designed for SOC analysts, incident responders, and security professionals transitioning to or specializing in cloud security. These courses span foundational, intermediate, and advanced levels, with a focus on Microsoft Azure tools, methodologies, and practical applications for incident response and forensics.
Responsibilities
As a contract instructor, you will:
โ€ข Deliver live virtual training that explores the differences between cloud and on-premises incident response, ensuring participants understand the Shared Responsibility Model and its implications for security investigations.
โ€ข Teach participants to analyze Azure core functions, including virtual machines (VMs), storage, networking, and Identity Access Management (IAM), and guide them in navigating Azure logging sources and log types.
โ€ข Provide hands-on instruction on configuring and utilizing tools like PowerShell modules, Microsoft Defender Suite, and Microsoft Sentinel for security orchestration, automation, and response (SOAR).
โ€ข Help students investigate and mitigate threats by teaching detection of common Azure attack patterns (e.g., password spraying, lateral movement, data exfiltration) and conducting threat hunting using Kusto Query Language (KQL).
โ€ข Guide advanced students in performing in-depth virtual machine forensics in Azure, including introductory memory analysis, while addressing challenges in forensic analysis of serverless functions and containers.
โ€ข Support proactive defense strategies by teaching Azure-specific playbook creation, threat modeling, and leveraging cloud-native tools for artifact collection, automation, and advanced detection.
โ€ข Facilitate labs and exercises that allow participants to apply new skills in realistic scenarios, such as configuring Microsoft Sentinel, integrating threat intelligence, and mapping security controls to frameworks like MITRE ATT&CKยฎ.
โ€ข Create an engaging and interactive learning environment, answering participant questions and ensuring key objectives are met.
Qualifications
Required:
โ€ข Proven expertise in cloud incident response, with a focus on Microsoft Azure security tools and frameworks.
โ€ข Prior experience teaching technical content to security professionals, preferably in virtual environments.
โ€ข In-depth understanding of Azure architecture, logging sources, PowerShell, Microsoft Defender Suite, Sentinel, and SOAR.
โ€ข Knowledge of threat hunting, advanced log analysis, and cloud-specific attack patterns.
Preferred:
โ€ข Relevant certifications (e.g., Azure Security Engineer, Azure Administrator, CISSP, GCFA, GCIH).
โ€ข Familiarity with conducting forensic analysis of virtual machines, containers, and serverless functions in Azure.
โ€ข Experience designing and delivering incident response playbooks and cloud automation workflows
Required:
โ€ข Proven expertise in cloud incident response, with a focus on Microsoft Azure security tools and frameworks.
โ€ข Prior experience teaching technical content to security professionals, preferably in virtual environments.
โ€ข In-depth understanding of Azure architecture, logging sources, PowerShell, Microsoft Defender Suite, Sentinel, and SOAR.
โ€ข Knowledge of threat hunting, advanced log analysis, and cloud-specific attack patterns.
Preferred:
โ€ข Relevant certifications (e.g., Azure Security Engineer, Azure Administrator, CISSP, GCFA, GCIH).
โ€ข Familiarity with conducting forensic analysis of virtual machines, containers, and serverless functions in Azure.
โ€ข Experience designing and delivering incident response playbooks and cloud automation workflows
Cybervance is an equal opportunity employer. All qualified applicants are considered for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable federal, state, or local laws.