Security Engineer / SOC Engineer / SIEM Engineer (Microsoft Sentinel)
Up to £70,000
Hybrid (Manchester or Buckinghamshire x2 days per week)
A leading technology company who are at the forefront of cloud, Security and IT infrastructure services are currently looking for a Microsoft Sentinel Security Engineer to support with the improvement and optimisation of the SIEM tool.
The Role:
In this role you will be a valued and key member of the Engineering team that is responsible for designing, deploying and configuring the Microsoft Sentinel SIEM tool in customer environments. You will have the opportunity to be involved in not only the optimisation of the SIEM tool but also the onboarding of customers.
Responsibilities:
- Development of SOC triage runbooks for developing threats
- Setting up data connectors, integration with 3rd party API’s & Apps
- Developing and implementing use cases to support analytics and threat hunting
- Actively working to improve to efficiency of Microsoft Sentinel
- Tuning of Microsoft Sentinel to reduce false positives
Key Experience:
- KQL (Kusto Query Language)
- Minimum 12’ months experience in a Security Engineering role working directly on Microsoft Sentinel SIEM
- Experience developing runbooks, playbooks and workbooks
- Prior hands-on experience with Microsoft Sentinel iskey
- Automation experience in the form of Azure Logic Apps or CI/CD pipelines would be beneficial but not essential
Cloud Decisions are proud to be part of Microsoft UK's Talent Partner Services and helps you to connect with some of the best cloud, data and security career opportunities within the Microsoft Partner Network. Our Talent Specialists are also Microsoft certified, allowing us to have conversations at depth with you about your technical and /or consulting experience. Whether this role is right for you or not we can also connect you with other opportunities to suit your background.