SIEM Security Engineer - Azure Sentinel
EliteCyber are exclusively supporting a leading MSSP who have a new partnership with Microsoft Azure; and we're looking for an Azure SIEM Specialist to support our MSSP's new customer on all aspects of implementation, integration, and solution architecture for their new Azure Sentinel SIEM within their SOC.
Location: UK/100% Remote
Responsibilities
- Guide engineering design, analysis, implementation, and support of security technologies
- Research, design, and implement cyber security solutions
- Drive the review and update of cyber security policies, architectures, and standards
- Drive the responses to audits, penetration tests and vulnerability assessments
- Conduct ongoing research around the threat landscape, including threat actors, TTPs and develop IR actions, investigation strategies and tooling
Essential Skills & Experience
- Extensive experience on Microsoft Sentinel
- Extensive experience with KQL and ADX.
- Ensuring alerts generated by the SIEM are relevant/applicable to the customers environment.
- Liaising directly with customers for new use cases
- Creating LogicApps and automated responses for security incidents
- Experience with the other products in the Microsoft Security Suite – Endpoint, Identity, Purview, CloudApp, EASM, Mail 365.
- Understanding of the MITRE ATT&CK framework
- Working within a MSSP environment
- Microsoft Certifications such as SC-200
Contact: Anthony.s@elitecyber-group.com