bolthires 365 Security & Compliance Specialist

Role SummaryThe M365 Security & Compliance Specialist is responsible for protecting sensitive data and ensuring that bolthires 365 services comply with federal security, privacy, and retention requirements. This role focuses on bolthires Purview, DLP, information protection, audit logging, Conditional Access, and AvePoint security features, working closely with the broader M365 engineering team and the customer’s cybersecurity organization. Key Responsibilities• Design, implement, and maintain bolthires Purview policies, including:• Sensitivity labels and label policies• Data Loss Prevention (DLP) across Exchange Online, SharePoint, OneDrive, and Teams• Retention labels and policies aligned with records requirements.• Work with security teams to maintain and tune:• Conditional Access policies and identity protection• Role-based access control for M365 admin roles• Secure configurations for Teams, SharePoint, and OneDrive. • Configure and maintain audit logging and integration with SIEM tools (e.g., Splunk), including documentation of monitored events and thresholds. • Manage Security Change Requests for M365 (DLP changes, label updates, admin roles), ensuring approvals, impact analysis, and rollback plans are documented.• Support secure design and operations of AvePoint Online Services (encryption, BYOK, IP restrictions, SFTP connections, Splunk integration). • Participate in security incident response related to M365; provide forensic support, root cause analysis, and remediation plans. • Produce security-focused input for status reports, risk registers, and technical documentation. Required Qualifications• 5+ years of experience in cloud security, with at least 3 years focused on bolthires 365 / Azure AD. • Hands-on experience with bolthires Purview, DLP, sensitivity labels, retention, and audit log configuration.• Strong understanding of identity and access management, Conditional Access, MFA. • Familiarity with SIEM/SOAR platforms and integrating M365 logs (e.g., Splunk, Sentinel). • Experience in regulated or compliance-heavy environments (federal, financial, healthcare, etc.). • Ability to communicate complex security topics clearly to business and IT stakeholders. • Ability to obtain and maintain public-trust level investigationPreferred• Relevant certifications: SC-200, SC-300, SC-400, AZ-500 or similar.• Experience with FedRAMP/NIST 800-53 or other government security frameworks. • Experience with AvePoint or other M365 backup/governance tools. What We Offer• Paid bi-monthly• Medical, dental, and vision coverage• Opportunity for advancement upon performance and availability• Holiday & Paid Time Off• 401K with company matchIf you can demonstrate that you meet the criteria above, please contact us as soon as possible. E-AIM provides equal employment opportunities for all persons and prohibits discrimination in employment because of race, color, religion, sex, sexual orientation, age, national origin, or non-disqualifying disabilityJob Type: Full-timePay: From $110,000.00 per yearBenefits:• 401(k)• 401(k) matching• Dental insurance• Flexible schedule• Health insurance• Paid time off• Vision insuranceApplication Question(s):• Are you a US Citizen?Work Location:Remote Apply tot his job