1 to 25 of 47 Azure Sentinel Jobs

Senior Consultant (Azure) | Permanent | Mostly remote Salary: Base from £75,000 to £79,200 (Based on candidate experience) Employee Package: Bonus (discretionary) + Excellent company benefits Mostly Remote: Mostly remote (Ad-hoc to London, or client-requirement) Job Type: Permanent Job Summary: We are recruiting on behalf … leading UK technology services organisation for Senior Azure Consultants to join a growing cloud delivery practice. The role requires hands-on expertise across Azure core services (Entra, IaaS, Networking, ExpressRoute), cloud-native technologies (AKS, App Services, Sentinel), and management tooling (Azure Policy ...

will evaluate application-generated logs, develop threat detection strategies and report findings to the Information Security team. This role requires deep expertise in Microsoft Azure security tools, log analytics and automation to enhance the customer's application anomaly detection capabilities. Key Responsibilities: Develop detailed threat models tailored … large portfolio of applications with varying threat categories Analyse logs generated by applications using Azure Log Analytics and Azure Sentinel to identify anomalies and potential threats Design, build and maintain KQL queries Implement automated alerting and reporting workflows through Azure Logic Apps ...

will evaluate application-generated logs, develop threat detection strategies, and report findings to the Information Security team. This role requires deep expertise in Microsoft Azure security tools, log analytics, and automation to enhance the customer’s application anomaly detection capabilities. Key Responsibilities: Develop detailed threat models tailored … large portfolio of applications with varying threat categories. Analyze logs generated by applications using Azure Log Analytics and Azure Sentinel to identify anomalies and potential threats. Design, build, and maintain KQL queries to extract and correlate security-relevant data from logs. Implement automated alerting ...

advisor relationships and guide customers towards achieving a healthy and secure state. Relevant MIP/VBD Titles On-Demand Assessment – Entra ID WorkshopPLUS - Microsoft Azure: Hybrid Identity WorkshopPLUS - Microsoft Entra: Identity Fundamentals Activate Azure with Multi-Factor Authentication and Conditional Access Onboarding Accelerator - Migrate Single Sign … Applications to Entra Onboarding Accelerator - Azure Active Directory: Features Deployment Onboarding Accelerator - Entra Permissions Management WorkshopPLUS - Microsoft 365 Security and Compliance Technical Update Briefing Skills Required This role requires deep knowledge (300 – 400 level) in the following technology areas: Entra ID Role Base Access Control (RBAC) Account Management ...

BCorp certified and values led scale-up with unique offering in the travel sector. Azure, Networking, Terraform, Security. Long term career development, project leadership. Fast-growing travel business in central Bristol with international offices are looking for an Azure Cloud Engineer to help them reach … carbon.*Likely to be 1 trip to the office fortnightly What skills you’ll be needing Hands-on experience designing, deploying, and managing Azure-only cloud environments across networking, compute, storage, identity, and PaaS services. Strong knowledge of Azure networking, including Azure Firewall ...

against external threats and adversaries. Position Overview: My client is seeking a proactive and motivated Cloud Security Engineer with a strong focus on Microsoft Azure security to join a growing team. This role would suit a security engineer or SecOps professional who understands the importance of maintaining highly … secure environments and is keen to work across cloud, endpoint, and infrastructure domains. While the primary focus is Azure security engineering, experience with hardware and traditional infrastructure security would be advantageous. Team Principles: The team operates best when they: Remain curious and passionate about their work Communicate clearly ...

discipline. * Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. * Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. * Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. * Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

design" solutions are woven into the fabric of the entire ecosystem. Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra … overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows ...

Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/XDR, SIEM (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management. Experience with security audits, compliance programmes, and regulated industry requirements. Excellent communication and influencing skills, with confidence engaging ...

expected to work with a high degree of autonomy. What You Will Be Doing Monitoring and analysing threat data from Microsoft Defender and Sentinel and translating findings into clear, actionable outcomes Reviewing and implementing Microsoft and third party security recommendations across a broad and complex technology estate Managing … delivering security improvements through formal change management processes, ensuring changes are properly scoped, approved and tracked Maintaining security standards across Azure, M365, Active Directory, Dynamics, Power Apps and SQL environments Aligning security posture against ISO 27001, NIST, NCSC, CISA and Cyber Essentials+ frameworks Producing reports and dashboards ...

seeking an experienced Azure Cloud Security Architect to lead the design, implementation, and governance of security controls across our Azure cloud platform. This role requires a hands-on technical expert with deep experience in Microsoft Defender for Cloud, Azure-native security services, and enterprise … platform security architecture. What you'll bring: Design and implement secure Azure cloud architectures aligned with security best practices and compliance requirements Lead implementation, configuration and optimisation of Microsoft Defender for Cloud Develop and enforce Azure security policies, standards, and guardrails Implement Zero Trust principles across ...

ownership and variety across the full defensive lifecycle. What You’ll Be Doing Lead investigations, triage and containment using SIEM/EDR (Microsoft Sentinel preferred) Harden IAM, PIM/PAM , Windows/Linux, endpoint baselines and identity services Strengthen M365 security : Defender for Endpoint/O365/Identity … Windows + Linux) Network security concepts (firewalls, IDS/IPS) Incident Response & Detection Hands-on IR: triage investigation containment recovery Experience with SIEM (Sentinel strongly preferred) Experience with EDR/XDR tools: Defender/CrowdStrike/SentinelOne Log analysis, packet captures, forensic investigation fundamentals Microsoft Security Defender suite ...

from the outset. What youll do Develop and implement security architectures aligned with enterprise strategy, regulations, and control standards, with a focus on Azure and hybrid cloud environments. Collaborate with Enterprise, Solution, and Cloud Architects to embed security in all designs, including application security and Azure-native services. Define and maintain security standards, guidelines, and reference architectures for Azure workloads, identity management (e.g., Entra ID), and secure application development. Deliver clear cybersecurity advice to technical and non-technical stakeholders on Azure security best practices, threat protection, and compliance. Champion 'Secure ...

support based role, ideally in the managed services space across the Microsoft technology stack Experience in Entra ID, Intune, and Azure. Knowledge of Sentinel, and Microsoft Defender. Experience working within a SOC environment would be advantageous. Demonstrable experience in forming collaborative working relationships with customers and other internal ...

escalation point for 1st Line Engineers, taking ownership of more complex issues. Troubleshoot and resolve advanced incidents across Microsoft 365, Azure AD, NinjaOne, SentinelOne, Barracuda, networking technologies, virtualisation and Windows Server environments. Deliver remote and on-site support where required. Ensure all tickets are handled within agreed SLAs ...

Cloud Security Engineer (Azure/M365) | SC Clearance needed | Remote + Client Visits We're working with a growing, security-focused organisation that is investing heavily into its cloud security capability and looking to bring in a Cloud Security Engineer to support both internal platforms and client environments. … work in Cheltenham office if preferred. The Role: You'll play a key role in designing, improving and maintaining cloud security across Azure and Microsoft 365, working closely with technical teams and stakeholders to ensure environments are secure, compliant and continuously improving. This is a hands-on position ...

from you.Experience2-4 years' experience in cloud security, pre-sales engineering, technical consulting, or security operations.Exposure to at least one major cloud provider (Azure, AWS, or GCP), with a willingness to broaden your expertise.Understanding of hybrid and on-premise security concepts.Awareness of key frameworks such … PlatformsExperience with some of the following is helpful (not all required):Microsoft Defender for Cloud, AWS Security Hub, GuardDuty, GCP Security Command Center.Microsoft Sentinel, AWS CloudTrail, Config, KMS, GCP Cloud Logging.CSPM: Prisma Cloud, Wiz, Orca, Lacework, CloudGuard.CIEM: SailPoint, Saviynt, Veza.Identity & Access ManagementAzure AD/Entra ...

they are able to fully exploit MS M365, improve efficiency and enhance job satisfaction. Advise on user set up in regards of SharePoint, Azure, Forms Power BI, Teams, One Drive including sub sites, lists, libraries, and content. This may include: o Working with the users to understand their ...

clearance is essential; DV clearance is advantageous Strong understanding of enterprise security architecture, security frameworks, and governance Experience across cloud security, particularly AWS, Azure, or Microsoft 365 environments Knowledge of network security, identity and access management, endpoint protection, SIEM, and zero trust principles Experience producing security documentation, architecture … Home Office, central government, or defence programmes Knowledge of DevSecOps, container security, and secure software delivery Experience with security tooling such as Sentinel, Splunk, CrowdStrike, Palo Alto, or Defender Understanding of NCSC guidance and secure-by-design principles ...

objectives. Providing support to police forces for the onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional … development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creating and maintaining technical design documentation. Working with the PDS design team and wider ...

London are looking for a seasoned Information Security Lead to be the authority across all Information Security and Cloud Infrastructure; ensuring Azure, Microsoft 365, and SaaS platforms are secure, resilient, and compliant. The role combines hands-on technical security expertise with risk management, governance, and assurance, supporting business … enablement, rather than day-to-day service desk operations. The ideal candidate will have strong technicals skills across the following: Microsoft Entra ID (Azure AD): Conditional Access, MFA, Passwordless authentication, Identity Protection, PIM, Phishing resistant MFA configurations Zero Trust architecture and least-privilege access models Identity governance, access ...

Previously worked as a Threat Detection Engineer or in a similar role. Must have strong expertise in KQL. Hands-on experience with Microsoft Sentinel and Defender (Endpoint, Office 365). Familiarity with Microsoft Entra ID, including Identity Governance. Experience with Microsoft Purview, particularly DLP and data protection tools. … Exposure to cloud-native logging in Azure and Kubernetes environments. Understanding of “detection as code” or “everything as code” approaches, including CI/CD pipelines. Experience working with or alongside MSP SOC teams. Awareness of Agile methodologies and ways of working. Knowledge of attacker TTPs, threat modelling ...

Cyber Security Engineer Tech Focus: Azure/Microsoft 365/Purview/Defender/Sentinel Rate: Circa £500/day Inside IR35 Location: Fully Remote Duration: 6 Months This is a fantastic opportunity for a Cyber Security Engineer to join a small but growing Cloud/… Azure team within a global organisation in the construction consultancy sector. The business has now fully moved into Azure Cloud and is looking to strengthen and mature its cyber security posture. You’ll be joining a highly skilled and well‐established security and cloud team that ...

Previously worked as a Threat Detection Engineer or in a similar role. Must have strong expertise in KQL. Hands-on experience with Microsoft Sentinel and Defender (Endpoint, Office 365). Familiarity with Microsoft Entra ID, including Identity Governance. Experience with Microsoft Purview, particularly DLP and data protection tools. … Exposure to cloud-native logging in Azure and Kubernetes environments. Understanding of “detection as code” or “everything as code” approaches, including CI/CD pipelines. Experience working with or alongside MSP SOC teams. Awareness of Agile methodologies and ways of working. Knowledge of attacker TTPs, threat modelling ...