Senior Microsoft Azure Sentinel Engineer - Full-time

Job Summary:

We are seeking an experienced and highly skilled Microsoft Azure Sentinel Engineer to join our team. In this role, you will be responsible for designing, implementing, and maintaining the Azure Sentinel security information and event management (SIEM) solution. You will work closely with cross-functional teams to ensure the effective deployment of Azure Sentinel, enabling advanced security monitoring, incident response, and threat hunting capabilities.

Primary Responsibilities:

• Design and implement Azure Sentinel architecture, including data connectors, analytics rules, logic apps, workbooks, and automation playbooks.
• Configure and manage Azure Sentinel data sources, such as Azure Activity Logs, Azure Security Center, Microsoft Defender for Cloud, and third-party data sources.
• Develop and maintain custom analytics rules, hunting queries, and machine learning models to detect and respond to security threats effectively.
• Collaborate with the security operations team to investigate and respond to security incidents, leveraging Azure Sentinel's incident management capabilities.
• Implement and maintain Azure Sentinel automation playbooks for incident response, orchestration, and integration with other security tools.
• Optimize Azure Sentinel performance, scalability, and cost-effectiveness through appropriate configuration and resource management.
• Stay up-to-date with the latest Azure Sentinel features, security best practices, and industry trends, and contribute to the continuous improvement of the organization's security posture.
• Provide technical guidance, mentoring, and knowledge sharing to junior team members and other stakeholders.

Qualifications and Requirements:

• Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent experience.
• Minimum of 5 years of experience in cybersecurity, with a strong focus on security information and event management (SIEM) solutions.
• Extensive hands-on experience with Microsoft Azure Sentinel, including deployment, configuration, and administration.
• In-depth knowledge of Azure services, such as Azure Monitor, Azure Security Center, and Azure Log Analytics.
• Proficiency in scripting languages (e.g., PowerShell, Python) and data analytics tools (e.g., Kusto Query Language).
• Familiarity with security frameworks, standards, and best practices (e.g., NIST, CIS, MITRE ATT&CK).
• Strong problem-solving, analytical, and troubleshooting skills.
• Excellent communication and collaboration abilities, with the ability to work effectively in a team environment.
• Certification in Microsoft Azure (e.g., Azure Security Engineer Associate) or other relevant security certifications is preferred.

PIe77504b673f0-29952-34285806