Tom Langston

Cybersecurity Engineer - Security Assurance & Architecture


About

Cybersecurity engineer specialising in security assurance, Microsoft Defender XDR, Sentinel, and Entra ID. I design, assess, and validate secure-by-design solutions across Microsoft 365 and Azure.I work across both technical and stakeholder layers, translating security risk into practical actions that improve real-world outcomes.Background in infrastructure, systems, and customer-facing technical roles, giving a practical, real-world approach to security.Focused on validating control effectiveness, identifying risk, and improving security posture through practical, real-world implementation.



Experience

  • Lead security assurance across Microsoft 365 and Azure environments

  • Design and implement Defender XDR and Sentinel detection capabilities

  • Implement identity governance (Entra ID, Conditional Access, PIM)

  • Conduct security posture assessments and risk-based remediation

  • Lead incident response and root cause analysis

  • Advise senior stakeholders on security risk and strategy



Core Focus

  • Security assurance & control validation

  • Microsoft cloud security (M365, Azure)

  • Identity & access governance

  • Detection engineering & SIEM (Defender, Sentinel)

  • Security architecture & posture improvement (Zero Trust)



Certifications

  • CompTIA Security+

  • SC-200 - Microsoft Security Operations Analyst

  • SC-300 - Identity & Access Administrator

  • SC-900 - Security, Compliance & Identity Fundamentals

  • MS-900 - Microsoft 365 Fundamentals