3 of 3 Azure Sentinel Jobs in the East of England

monitoring and initial response for SOC customers in line with Intercitys Security Incident Response Framework. Investigate alerts generated by Microsoft Sentinel and Microsoft Defender for 365, identifying true positives and responding appropriately. Analyse multiple security data sources to detect malicious activity and support containment actions. Communicate clearly … recommend strategies to reduce risk across customer environments. Contribute to the ongoing development of the SOC service through: Tuning detection rules within Microsoft Sentinel Improving automation and ticket workflows Identify vulnerabilities within Microsoft Defender 365 and support customers in improving their overall security posture. Essential Experience & Knowledge: Strong ...

emerging cyber threats, vulnerabilities, and trends through threat intelligence sources. You'll be familiar in using and deploying SIEM technologies, experienced with Azure Security Solutions, Defender for endpoint, Defender for Identity and Office 365, and be experienced with the development of Microsoft Sentinel Kusto queries ...

follow agreed processes. Keep up to date with threats and recommend improvements. What you will bring: Clear understanding of Information Security fundamentals Sentinel OR Splunk experience. Familiarity with security monitoring/protective technologies. Good project-management skills; able to juggle multiple priorities. Analytical and systematic problem-solving approach … deadlines and collaborate in a busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experience—especially Sentinel or Splunk. If you are interested in this role but not sure if your ...