1 to 25 of 55 Azure Sentinel Jobs

strategy, to developing Data & AI solutions, right through to providing a range of managed services. We are a Microsoft Solutions Partner, holding Specialisations in AI Platform on Microsoft Azure, Analytics on Microsoft Azure, Data Warehouse Migration to Microsoft Azure and Migrate Enterprise Applications to Microsoft Azure, as well as holding Solutions Partner … designations in Data & AI (Azure); Digital & App Innovation (Azure); Infrastructure (Azure) and Security. But it's not just about the badges. We are proud to be recognised as the winner of the 2024 Microsoft Community Response Partner of the Year award, reflecting our dedication to using technology for positive change. We are also a … Planning Analytics. With offices in York and Sheffield, and a team based throughout the UK – we champion creativity, innovation and collaboration in the workplace. The Role As an Azure Cloud Infrastructure Engineer, you will be responsible for designing, deploying, and managing cloud solutions on the Microsoft Azure platform. Your role will involve architecting cloud infrastructure, implementing More ❯

Microsoft software implementations for medium to large organizations, providing their clients with the ability to keep up with the ever-changing digital world by implementing Microsoft's M365, Azure, Microsoft's Enterprise Resource Planning (ERP) and Customer Engagement (CE) software from the Microsoft Dynamics 365 (D365) software line. Role Overview The Azure Technical Architect is responsible … for delivering and implementing Azure solutions for clients. The Technical Architect will design Azure solutions on IaaS and PaaS and will be comfortable presenting these solutions to clients in workshops and demonstrations. The Technical Architect will manage the end-to-end delivery working with other Architects and Consultants to ensure our clients projects are delivered with … Work Place: Onsite Location: Malta, Europe (Relocate to Malta) Relocation: VISA & Relocation Package Included Requirements Ideally background in on premises infrastructure, virtualisation technologies or applications. Proven experience with Azure IaaS (virtual machines, storage, networking, security). Proven experience with Azure Backup & Recovery Services. Proven experience with Azure Governance (Blueprints, policies, tagging, cost management). More ❯

Agile IT is a Microsoft‑focused consulting and managed services provider. We help customers modernize and secure Microsoft 365, Azure, Azure Government, and Microsoft GCC High, with a mission to make CMMC Level 2 practical and sustainable through repeatable architectures, evidence automation, and managed operations. What youâ€TMll work across (our services) Professional Services – Enablement … architect who leads discovery, designs CMMC Level 2–aligned solutions, produces HLD/LLD and implementation plans, and guides delivery teams through build/migrate/hardening in Azure Government and Microsoft 365 GCC High. Youâ€TMll map NIST 800‑171/172 practices to Microsoft controls, accelerate time‑to‑audit‑ready, and create repeatable patterns our delivery … shape SOWs with Sales, ensuring delivery feasibility and margin. Package enablement offers that cleanly hand off to managed services with clear acceptance criteria and runbooks. Security & Compliance Architecture (Azure Gov/GCC High) Design CMMC L2 control implementations across Identity, Device, Data, and Threat: Identity/Access: Microsoft Entra ID (PIM, Conditional Access, MFA), Entra Connect/Cloud More ❯

fixed-term contract paying £70,000 , offering full remote flexibility across the UK. The Opportunity You'll play a key role in stabilising and strengthening Microsoft 365 and Azure environments through a period of change. The role blends technical delivery with stakeholder engagement - you'll be as comfortable securing systems as you are guiding … users through new policies and controls. What You'll Be Doing Delivering and maintaining security across Microsoft 365 and Azure . Building and tuning detections in Microsoft Sentinel . Managing patching, malware protection, and vulnerability remediation . Supporting Cyber Essentials Plus and ongoing compliance programmes. Documenting changes, maintaining governance, and ensuring minimal disruption. Mentoring a service … desk engineer stepping into cyber security. What You'll Bring Strong experience with Microsoft 365 security, Defender, Intune, and Azure AD/Entra ID . Working knowledge of Azure Sentinel (SIEM) and KQL. Solid understanding of patch management and endpoint security. Previous involvement in Cyber Essentials Plus or ISO27001 accreditation. Clear communication skills, able More ❯

including investigation, remediation, documentation, and reporting. Manage security tools such as SIEM, IDS/IPS, firewalls, endpoint protection, and identity access management systems. Strengthen cloud security across AWS, Azure, or GCP environments. Ensure regulatory compliance such as SOC2, ISO 27001, NIST, HIPAA, or PCI standards. Evaluate and integrate new security technologies and automation solutions. Collaborate with IT, DevOps More ❯

forward to ensure the business makes the full use of the collaboration tools (Teams, SharePoint etc.). A good knowledge of the security features of 365 (Entra/Azure AD) is required to ensure the business leverages the maximum potential of cyber hygiene and GDPR best practice Understanding the importance of Identity Threat Management Experience or understanding of More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

to support a leading government client . The role is based in London and will need 2/3 days on site.Im looking for someone that has recent Sentinel and Defender experience and is a SME in this area Background skills required. • Policy Enforcement: Implement Conditional Access, MFA, and DLP policies. Maintain security posture using Secure Score and … of workload. • PowerShell Scripting: Automate routine tasks and configurations across O365 services • Policy Development: Support creation and enforcement of Council-wide O365 usage policies • Configure and maintain Sentinel workspaces aligned with Council tenancy and compliance requirements. • Integrate data sources including Defender for Endpoint, Defender for Identity, Office 365 audit logs, Azure AD, and third-party connectors. … Develop and implement playbooks and alert rules for automated incident response. • Collaborate with the Service Desk to triage and escalate Sentinel alerts. • Administer and maintain Microsoft 365 services including Exchange online, Exchange on prem and managing hybrid setup. • Administer and optimise Microsoft Defender XDR solutions including Defender for Cloud Apps, Defender for Office 365, and Defender for Identity. More ❯

and experienced Detection Engineer to expand our Managed Security Service Provider (MSSP) team. You will be responsible for developing and maturing detection coverage across our MSS customers (Splunk, Azure Sentinel, Chronicle SIEM). For this particular role we're primarily looking for someone with Sentinel detection engineering experience. Requirements This role sits within our …/YARA-L) Strong knowledge of scripting languages such as Python, Go or Shell Knowledge of Infrastructure as Code (IaC) tools e.g. bicep Experience with cloud platforms (AWS, Azure, GCP). Benefits What's in it for you? Our vision is to create a safe, inclusive digital world where people and organisations can thrive. Our values of Do More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

hunt for threats, and enjoy taking ownership of complex challenges this role is for you. What Youll Do Lead on threat detection, hunting, and incident response, working with Azure/Defender, Sentinel, and third-party SOCs. Investigate alerts and coordinate responses with internal IT teams and external managed SOCs. Continuously monitor, enhance, and report on security … with ISO27001, GDPR, Cyber Essentials Plus, and other regulatory frameworks. What Were Looking For Proven experience in Cyber Security, Threat Intelligence, or SOC environments. Hands-on experience with Azure Security Center, Microsoft Sentinel, Defender ATP, M365 Security & Compliance, and KQL scripting. Knowledge of frameworks such as MITRE ATT&CK, NIST, CIS, NCSC, and Security Scorecard. Understanding More ❯

stall, you instrument, tune, and automate. You remove toil and reduce manual triage with engineering, not heroics. You're Hands‐On – One hour you're shipping a new Sentinel analytic rule, the next you're leading a live incident bridge, then refining a post‐incident problem record and control improvements. You Thrive in Chaos – Startups are messy. You … SOC built on automation, quality data, and continuous learning. What You'll Be Doing: Own the design, implementation, and operation of our SIEM and SOC capability with Microsoft Sentinel, including data ingestion, workspace architecture, analytics, automation, and dashboards. Integrate high‐value telemetry sources (Entra, M365, Google Workspace, AWS, GCP, endpoints/EDR, network, SaaS, CI/CD, identity … and proprietary platforms) into Sentinel via native connectors, APIs, custom logs, and event hubs. Engineer detection content: write, test, and tune KQL analytics, scheduled rules, UEBA policies, MSTIC notebooks, watchlists, and hunting queries that map to industry frameworks (MITRE ATT&CK). Build incident response playbooks and SOAR automation with Logic Apps to enrich, correlate, contain, notify, and More ❯

Workplace roadmap aligned with business goals. Lead technology selection and integration (e.g., Microsoft 365, Teams, Intune, Citrix). Manage Unified Endpoint Management (UEM) using Microsoft Intune, SCCM, and Azure AD. Oversee device lifecycle management, including provisioning, patching, and retirement (laptops, desktops, mobile, peripherals). Deploy and manage Azure Virtual Desktop (AVD) for remote and hybrid workforces. … Utilise Azure Autopilot for device provisioning and configuration. Integrate Azure Monitor, Log Analytics, and Sentinel for endpoint visibility and security. Leverage Azure AD Conditional Access and Identity Protection for secure access. Collaborate with InfoSec to enforce endpoint security policies. Ensure compliance with GDPR, ISO 27001, and internal governance. Lead initiatives to improve … Digital Experience Monitoring (DEM) tools. Administer and optimise Microsoft 365 ecosystem (Exchange, SharePoint, OneDrive). Drive adoption of collaboration platforms (Teams, Slack, Zoom). Integrate VDI solutions (Citrix, Azure Virtual Desktop) for remote access. Automate account provisioning via Azure AD and HR system integration. Assign appropriate roles and group memberships based on job function. Provision access More ❯

in incident response, security operations (SOC), or cybersecurity investigations. Certifications (Preferred): GCIH, GCFA, CISSP, CEH, OSCP, or equivalent. Technical Expertise: o Hands-on experience with SIEM (Splunk, QRadar, Sentinel), EDR (CrowdStrike, Carbon Black, Defender), and forensic tools. o Strong knowledge of Windows, Linux, and cloud security (AWS, Azure, GCP). o Experience with network traffic analysis More ❯

detection/prevention systems, endpoint protection, SIEM, and identity management platforms. Implement secure network architecture and enforce segmentation and least-privilege access controls. Support secure cloud environments across Azure, AWS, or GCP (e.g., IAM, security groups, encryption, KMS). Threat Detection & Incident Response Monitor and analyze security alerts and network traffic for threats or suspicious activity. Lead or … Computer Science, Networking, or a related field. Experience: 3+ years’ experience in cybersecurity, network engineering, or IT infrastructure security roles. Certifications (Preferred): CompTIA Security+, CEH, OSCP, CISSP, CCSP, Azure/AWS security certifications. Skills & Competencies Strong knowledge of network security (TCP/IP, VPNs, DNS, firewalls). Experience with SIEM tools (e.g., Splunk, Sentinel, QRadar) and More ❯

authority and governance for the effective use of technical security controls across the firm Act as an escalation point for threat hunting and security incidents Investigate alerts from Azure/Defender, IT monitoring systems, and 3rd-party SOC, helping to ensure critical assets remain secure Manage supplier relationships, report on control effectiveness, and support compliance with ISO … GDPR, and Cyber Essentials Plus Technology NIST, CIS, NCSC, Mitre Att&ck, Security Scorecard, M365/Azure Security Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS, SaaS More ❯

re working on an exciting opportunity with one of our clients with a rapidly transforming technical environment with lots of investment. They're looking to bring in an Azure Cyber Security Analyst to help drive their mission forward by protecting critical systems and embedding a robust security culture throughout the business. Key responsibilities for the Azure Cyber Security Analyst: As an Azure Cyber Security Analyst, you'll join a collaborative and multi-disciplinary security team that works across operations, assurance, and governance. This is a highly cross-functional role, perfect for someone with broad security expertise who enjoys variety and continual development. As the Azure Cyber Security Analyst y ou … wi ll take the lead on: Driving the use of Azure Cloud based security tools such as Defender and Sentinel Configure and manage alerts through Defender First and second line security operations, including vulnerability management Investigating and responding to security incidents Ensuring policies and procedures remain aligned to industry best practice Promoting security awareness and education More ❯

re working on an exciting opportunity with one of our clients with a rapidly transforming technical environment with lots of investment. They're looking to bring in an Azure Cyber Security Analyst to help drive their mission forward by protecting critical systems and embedding a robust security culture throughout the business. Key responsibilities for the Azure Cyber Security Analyst: As an Azure Cyber Security Analyst, you'll join a collaborative and multi-disciplinary security team that works across operations, assurance, and governance. This is a highly cross-functional role, perfect for someone with broad security expertise who enjoys variety and continual development. As the Azure Cyber Security Analyst y ou … wi ll take the lead on: Driving the use of Azure Cloud based security tools such as Defender and Sentinel Configure and manage alerts through Defender First and second line security operations, including vulnerability management Investigating and responding to security incidents Ensuring policies and procedures remain aligned to industry best practice Promoting security awareness and education More ❯

compliance needs. Develop and present tailored SIEM architecture and design strategies, ensuring alignment with client goals and industry best practices. Recommend the best-fit SIEM platform (e.g., Splunk, Sentinel, CS) based on client requirements, budget, and existing security infrastructure. SIEM Implementation & Configuration: Lead the design and configuration of SIEM solutions, ensuring integration with client systems and optimizing for … consulting, with the ability to communicate complex technical concepts clearly and effectively to clients. Technical Expertise Hands-on experience with at least one major SIEM platform (e.g. Splunk, Sentinel or QRadar) and familiarity with cloud security tools such as AWS GuardDuty, Azure Security Center, or Google Cloud Security. Background in client-facing roles or consulting, with More ❯

standards. Required Experience/Skills: 5 years’ experience in a SOC, security engineering, or cyber operations role. Strong hands-on experience with SIEM or EDR platforms (e.g., Microsoft Sentinel, Splunk, Defender, CrowdStrike, Elastic). Expertise in building and tuning detection rules, dashboards, and automation playbooks. Proficiency in scripting or automation (KQL, PowerShell, Python, or similar). Knowledge of … log management, APIs, data normalisation, and cloud security (Azure, AWS, or M365). Solid understanding of network, system, and identity security fundamentals. Excellent problem-solving skills and a passion for continuous improvement. Experience with SOAR platforms (e.g., Microsoft Sentinel Automation, Cortex XSOAR, Splunk SOAR). Knowledge of MITRE ATT&CK mapping and detection engineering frameworks. Infrastructure More ❯

baselines. Support architectural governance, project reviews, and digital assurance. Maintain the technical security roadmap and drive improvements across tooling and capabilities. Operate and optimise core security tools (Defender, Sentinel, Tenable, CASB) and track control adoption through KPIs and dashboards. Lead and document security initiatives, including hardening guides, architecture diagrams, and evidence packs. Chair the Cyber Security Working Group … equivalent experience plus relevant security certifications (Security+, CEH, CySA+, Cloud Security Engineer). Significant experience in cyber security operations or incident response. Hands-on expertise with Microsoft Defender, Sentinel, Tenable, CASB, and cloud security (AWS/Azure). Proven security project delivery, PowerShell automation skills, and familiarity with IR frameworks. Consulting-style experience providing advisory support More ❯

and operation of our IT and cloud environments. This role spans across on-premise infrastructure, Windows/Linux endpoints, and cloud platforms (IaaS, PaaS, SaaS) such as Salesforce, Azure, and Microsoft 365, including identity services and end-user devices. As the primary point of contact for security-related matters, the person will manage our external SOC, oversee patch … day to day activities and projects, including the following: Oversee the secure configuration and operation of on-premises systems, endpoints, and cloud environments, including platforms such as Microsoft Azure, Microsoft 365 and Salesforce. Act as the primary point of contact for all internal and external security-related inquiries. Manage and coordinate with the external Security Operations Center ensuring … level timelines. Manage externally conducted penetration testing activities, including planning, oversight, and tracking remediation of findings to closure. Administer and operate the Microsoft Defender XDR suite, including Microsoft Sentinel, to maintain effective threat detection and response capabilities. Provide security expertise and guidance to IT and business teams, and act as a deputy for the Security Manager when required. More ❯

Active Directory, Hyper-V and high availability failover clustering Microsoft Data Protection Manager PowerShell scripting and automation All round Microsoft Cloud Operations engineer Cloud Services, IaaS, PaaS, Microsoft Azure, including Site recovery (ASR) and M365, Exchange Online, OneDrive, Teams Azure networking (private endpoints, Azure firewalls, VPNs, IP Groups etc) Operations systems, Windows Desktop, Windows … Server and Linux Monitoring/Alerting/log Analytics, Sentinel Logic Apps API Management gateways Azure Application Proxies You must be eligible for security clearance living in the UK as a British Citizen. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy More ❯