1 of 1 Azure Sentinel Jobs in Farnborough

Scanning/Management etc. Experience (essential) Strong experience with Security Information and Event Management (SIEM) tools, in order of preference: - Elastic Security (Mandatory) - Sentinel (Optional) - Splunk (Optional) Hands-on knowledge of Endpoint Detection & Response (EDR) solutions (e.g., Elastic XDR, Microsoft Defender, CrowdStrike, Carbon Black, SentinelOne). Practical understanding … environments. Understanding of malware techniques, lateral movement, persistence mechanisms, and threat actor TTPs. Experience (nice to have) Exposure to cloud security monitoring (AWS, Azure, GCP logging and detections). Knowledge of SOAR platforms and automation playbook creation. Experience with YARA, Sigma, or Snort/Suricata rule writing. Familiarity ...