23 of 23 Azure Sentinel Jobs in the South East

Azure 3rd/4th Line Escalation Support - Remote Azure, MFA, Conditional Access, Licensing, Azure Virtual Desktop, Server, Active Directory, O365, Sentinel, Defender for Endpoint. My client are a leading and well established IT services company, recognised as a leading support provider for Microsoft. Due to ongoing success and growth they have an … immediate requirement for a Azure 3rd/4th Line Escalation Support analyst. As Azure 3rd/4th Line Escalation Support Analyst you will be working closely with internal and external support teams on escalated support issues as well as close contact with Microsoft directly. The Azure 3rd/4th Line Escalation Support Analyst will … be an Azure hot shot but with also someone that has built up their skills and knowledge around on-prem infrastructure and networking. looking for a deep troubleshooter that has been there an got the T-shirt. My client is after someone that is by nature inquisitive, technical and wants to get to the root of a problem. More ❯

Cyber Security Lead - Sentinel & Azure | Local Government Rate: £650 per day IR35: Inside IR35 Location: Hybrid - 2 days per week onsite in London Contract: 3 months initially, with strong potential for extension Salt Recruitment's Local Government team is working with a London-based Local Authority to recruit an experienced and hands-on Cyber Security Lead … upcoming projects, embedding security practices, and leading preparations for a Public Services Network (PSN) audit. This is a critical delivery role that requires advanced technical expertise with Microsoft Sentinel and Azure , including automation using Sentinel playbooks . You'll also be expected to mentor internal analysts and drive cross-departmental engagement on cyber posture … compliance, and incident response readiness. Key Responsibilities: Act as the lead for cyber security across multiple projects and programmes Design and implement Sentinel playbooks to automate detection and response Lead on PSN audit readiness and ensure compliance with key frameworks (Cyber Essentials, ISO27001, NIST, GDPR) Conduct cyber risk assessments, maintain the risk register, and drive remediation activity Provide More ❯

Cleared) - Contract Location: United Kingdom 100% Remote? Duration: 6 Months Clearance: Active SC Clearance is required Are you a hands-on Security Engineer with deep expertise in SIEM , Azure Sentinel , and incident response Join a dynamic cyber security team … to support a critical national infrastructure (CNI) project involving the deployment of Windows Hello for a major UK utility company. What You'll Be Doing: Supporting and tuning Microsoft Sentinel and other SIEM platforms (KQL scripting) Managing escalated incidents from L1 analysts and leading full incident response lifecycle (MIM) Conducting in-depth data analysis , threat hunting, and forensic … and contributing to security strategy Ensuring security policies align with standards like NIST, ISO 27001, MITRE ATT&CK We're Looking for Someone With: Expert-level SIEM experience (Azure Sentinel highly preferred) Strong knowledge of Kusto Query Language (KQL) Demonstrated experience in cybersecurity incident response & breach handling Familiarity with threat intelligence, vulnerability management , and cloud security More ❯

Job Title: Security Architect – Azure Focus Contract Type: Contract (Outside IR35) Day Rate: £600/day Location: Hybrid – Remote with occasional travel to London Duration: 6 months (with potential extension) About the Role - We are looking for a highly skilled Security Architect with deep expertise in Microsoft Azure to join a leading organisation on a contract … basis. This role is ideal for someone who can design and implement secure cloud architectures, drive security best practices, and support enterprise-wide Azure security initiatives. Key Responsibilities Design and implement secure architectures within Microsoft Azure, ensuring alignment with business and compliance requirements. Conduct Azure-specific threat modelling, risk assessments, and security reviews across … infrastructure and applications. Collaborate with cloud engineering, DevOps, and compliance teams to embed security into the Azure development lifecycle. Define and maintain Azure security policies, standards, and best practices (e.g., Azure Security Center, Defender for Cloud, Azure Policy). Provide expert guidance on Azure-native security tools including Azure More ❯

an expectation to be in the office 2-3 days per week. You’ll be joining a technical team focused on strengthening cloud security and ensuring compliance across Microsoft Azure environments. This role will involve hands-on security engineering, working closely with infrastructure and DevOps teams, and supporting the adoption of Microsoft’s security toolset across the organisation. … You will need proven experience with: Securing Azure environments in line with best practices - essential Microsoft Defender (Cloud, Endpoint, 365) - essential Sentinel - essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR … towards) One or more of MS-500/SC-400/SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Cloud Security Engineer, Azure Security Engineer, Azure Security Consultant, Cloud Security Consultant, Microsoft Security, Azure Sentinel, Defender, Purview, Compliance, Entra ID, Cloud Security, DLP, Data Sector, London More ❯

of Cyber Security. Required Skills Experience with EDR and Anti-Virus/Malware management such as SentinelOne, CrowdStrike and Defender. Demonstrated ability working with IT System Administration of Azure, Defender (ATP), M365 and Windows. Experience with Identity Access and Management (IDAM) solutions. CyberArk and ENTRA ID Familiarity with conditional/remote access toolsets. ENTRA, DUO SSO & MFA gateway. … Proficient with Data loss prevention tools experience, such as MS Purview Compliance Manager and Tessian Security monitoring, SIEM tooling such as Exabeam, QRadar, Splunk and Sentinel. Experience with Azure (security centre) and M365 cloud infrastructure and configuration and on-premises Active Directory Experience in Cloud email security gateway services, Microsoft Exchange Online, Mimecast and DMARC. Experience developing policies … procedures related to cryptography, key-vault certificate management and HSM. Azure and Thales. Familiarity with Hyper-V, VMware and Citrix. Practical understanding of SCCM or enterprise patch management tools Experience with Qualys or enterprise Vulnerability Management and Compliance toolsets. More ❯

an initial 6-month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure … approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. … Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and More ❯

Devonshire Hayes are seeking a highly skilled Azure Cloud Administrator to join our clients dynamic IT team. Based in London, this hybrid role offers the opportunity to work on a range of cloud-based projects, ensuring the smooth operation, performance, and security of our Microsoft Azure environment. You’ll play a key role in managing cloud … infrastructure, supporting deployment processes, and ensuring compliance with operational and security standards across the business. Proven experience as an Azure Administrator or in a similar cloud operations role. In-depth knowledge of Microsoft Azure services (e.g., Azure VMs, App Services, Azure Storage, VNets). Experience with Azure Active Directory, Conditional … Strong skills in PowerShell or other scripting languages for automation. Solid understanding of networking concepts (DNS, firewalls, VPN, ExpressRoute). Experience with monitoring and logging tools such as Azure Monitor, Log Analytics, and Sentinel. Excellent problem-solving, communication, and documentation skills. More ❯

experience. 4+ years in a cybersecurity role, preferably within an MSP or fast-paced environment. Strong hands-on experience with SIEM, EDR, VPNs, firewalls, and cloud platforms (AWS, Azure, GCP). Expertise in Microsoft Sentinel, Cisco Splunk or Palo Alto QRadar, and KQL. Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR More ❯

flows within a network. * Advanced knowledge of Windows and Linux operating environments, including standard commands, file systems, and user authentication mechanisms. * Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms. * Able to demonstrate proficient knowledge using Kusto Query Language (KQL More ❯

customers, conducting occasional site visits, and helping optimise IT systems and services. This is an exciting opportunity to work with a broad tech stack including Windows, Microsoft 365, Azure, networking tools, and security platforms. To thrive as an IT Support Advisor , you must have hands-on experience with Windows 10/11, Active Directory, Microsoft 365, Intune, and More ❯

Security Engineer - SIEM - sought by investment bank based in London - Contract - Hybrid *Inside IR35 - umbrella* Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues Log Source Integration … new security tools Help define and measure control effectiveness Required Skills & Experience 3+ years in a Security Engineer, SOC Analyst, or similar role Hands-on experience with Microsoft Sentinel and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity with security frameworks (MITRE More ❯

Engineer - SIEM, KQL- sought by investment bank based in London. *Inside IR35 - 3 days a week on-site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues … YARA rules, STIX, and YAML Participation in red/purple team exercises. 3+ years in a Security Engineer, SOC Analyst, or similar role Hands-on experience with Microsoft Sentinel and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity with security frameworks (MITRE More ❯

will play a key role in deploying Microsoft security solutions and supporting client audits, assessments, and vulnerability remediation efforts. Responsibilities include: Delivering Microsoft security technologies including Defender XDR, Sentinel, and Endpoint Detection & Response Supporting Cyber Essentials and Cyber Essentials Plus audits and assessments Acting as an escalation point for cyber incidents, security alerts, and engineering tasks Conducting vulnerability … clients and internal teams What will you need? Minimum 2 years' experience in a cyber security role, ideally within an MSP Strong knowledge of Microsoft Defender suite and Sentinel SIEM Hands-on experience with Microsoft 365 cloud security Familiarity with EDR solutions (e.g., SentinelOne) Experience working with network security appliances (e.g., Cisco Meraki, Fortinet, WatchGuard) Excellent communication and … oriented with strong problem-solving abilities What would be desirable? Experience deploying Tenable or Qualys for vulnerability management Knowledge of email security tools (e.g., Mimecast, Egress) Understanding of Azure Firewall and Defender for Cloud/Cloud Apps Experience conducting offensive security/web application assessments Strong understanding of threat detection and incident response Certifications (any of the following More ❯

is a hands-on, client-facing role where you'll lead the design and delivery of scalable, secure cloud and infrastructure solutions. You'll work across Microsoft 365, Azure, Microsoft Sentinel, Intune, and network/firewall technologies - playing a key role from pre-sales and technical discovery through to project delivery. The Role: You'll engage … Have): 2+ years' experience as a Solutions Architect or similar within an MSP Strong technical knowledge of Microsoft 365, including migrations, hybrid identity, DLP, retention policies Hands-on Azure IaaS experience: networking, NSGs, VPNs, load balancers, governance Proven Microsoft Sentinel experience: KQL, dashboards, incident response Solid grasp of Intune, AutoPilot, security and compliance policies Strong networking More ❯

track. Essential Experience Preference given to candidates with MSP background Minimum 2 years proven experience in deploying Microsoft Security Solutions Working knowledge of Microsoft Defender XDR and Microsoft Sentinel SIEM technologies Working knowledge of Microsoft Defender suite including Endpoint Detection and Response Understanding of key Microsoft 365 Cloud Technologies from a threat landscape perspective Essential Certification any one … the below SC 200 – Microsoft Certified: Security Operations Analyst Associate AZ 500 – Microsoft Certified: Azure Security Engineer Associate Personal Skills Highly Motivated Can do attitude Attention to detail Excellent communication & organisational skills Proven client service skills Ability to work under pressure Willingness to work flexibly as required Core Technical Skills Deployment and administration of Microsoft security technology solutions … including: Microsoft Defender XDR Microsoft Sentinel SIEM Microsoft Defender for Endpoint/Business Azure Firewall Microsoft Defender for Cloud/Cloud Apps Microsoft Defender for Office 365 Deployment and management of Endpoint Detection and Response solutions including Sentinel One Deployment and management of networking solutions including firewalls, switches and access points including Cisco Meraki More ❯

Senior Security Architect (Azure & SIEM) Location: Remote (occasional travel to London)Contract Duration: 12 MonthsIR35 Status: Outside IR35Day Rate: Up to £750We’re seeking a highly experienced Senior Security Architect with deep expertise in Microsoft Azure and SIEM technologies to join a leading organisation on a 12-month contract. This is a remote-first role with … occasional travel to London for key meetings.Key Responsibilities: Design and implement secure cloud architectures within Microsoft Azure Lead the integration and optimisation of SIEM solutions, particularly Microsoft Sentinel Conduct threat modelling, risk assessments, and security architecture reviews Collaborate with engineering, DevOps, and compliance teams to embed security best practices Define and enforce security standards across Azure IaaS, PaaS, and SaaS environments Essential Skills & Experience: Strong background in Azure security architecture Hands-on experience with Microsoft Sentinel or other enterprise SIEM platforms Deep understanding of Azure security services (e.g. Defender for Cloud, Key Vault, Azure AD) Familiarity with Microsoft security frameworks and compliance standards Experience with secure More ❯

efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. You have - Proven experience deploying and managing Microsoft Defender (across all versions), Sentinel, Intune, and Windows security solutions, as well as strong proficiency in KQL, authentication protocols, and conditional access policies. - Practical knowledge of endpoint security across both server and end-user … environments, including Active Directory, Entra ID, Windows and RHEL hardening, and device management. - Familiarity with cloud platforms such as Azure and AWS is essential, and experience in operational technology (OT) environments is highly desirable. - Strong communication skills including the ability to conceptualise complex business and technical requirements into comprehensible models and templates. - Team-oriented interpersonal skills, with the More ❯

and identity. Shaping the security architecture strategy, roadmaps, and frameworks - always with a focus on delivery and commercial impact. Influencing the design of security services and technologies using Azure, Microsoft Defender, Sentinel, Entra ID, and more. Contributing to broader enterprise architecture governance - participating in design authorities, guiding solution architects, and promoting consistency and alignment. Driving the … What they're looking for A senior security architect with hands-on experience designing and assuring secure systems in complex enterprise environments. Strong understanding of cloud security (especially Azure), Zero Trust, and modern security engineering practices. Credibility to influence at senior levels (CISO, CIO, Heads of Department), with clear communication skills across technical and non-technical audiences. Proven More ❯

will play a key role in ensuring a secure, efficient, and well-governed M365 ecosystem. Key Responsibilities: Microsoft 365 Administration: Manage user identities, licenses, and security groups in Azure AD & Microsoft 365 . Configure and enforce Conditional Access Policies (CAP) for secure access. Implement and manage Multi-Factor Authentication (MFA) and Zero Trust policies . Monitor and troubleshoot … distribution groups . Additional Skills (Preferred): Experience with Microsoft Endpoint Configuration Manager (SCCM) co-management with Intune. PowerShell scripting for automation and bulk administration . Knowledge of Microsoft Sentinel for advanced threat detection. Familiarity with Microsoft Teams administration (voice, meetings, policies). Qualifications & Experience: 3+ years of hands-on experience as a Microsoft 365 Administrator or similar role. … Microsoft 365 Certified: Modern Desktop Administrator Associate (MD-100/MD-101) or equivalent certifications (preferred). Strong understanding of Azure AD, Identity & Access Management (IAM), and Zero Trust security . Proven experience with Exchange Online migrations and hybrid environments . Experience with Intune, Autopilot, and endpoint security . Soft Skills: Strong problem-solving and troubleshooting abilities. Ability More ❯

configuration Experience working in secure environments with a focus on proactive security posture Knowledge of network security tools such as Cisco Secure Access, Cisco ISE, Microsoft Defender XDR, Sentinel, and SentinelOne Comfortable with vulnerability management frameworks and tools Familiarity with network monitoring and performance management Previous experience working within an ITIL-based support framework Hands-on experience with … Check Point, Cisco, or Palo Alto firewalls Desirable: Certifications such as CCNA, CCNP, CISSP, or equivalent Experience with Citrix load balancing and Microsoft Azure networking Knowledge of WAF technologies ITIL Foundation certification More ❯

internal teams and vendors, occasionally stepping into a technical lead role to deliver secure, scalable solutions. Technical Skills Required: Microsoft 365 (Entra ID, Intune, SharePoint, Exchange Online) Microsoft Azure (AVD, VMs, Networking, Storage) Security tools (Defender, Sentinel, Purview, Mimecast) Backup & DR (Veeam, Azure Backup, ASR) Fortinet NGFWs (FortiGate, FortiSwitch, FortiManager) Windows Server & Desktop OS More ❯

clients, ensuring they get real value from their Microsoft investment and help them solve complex problems. The role requires deep technical expertise across the Microsoft Defender suite, Microsoft Sentinel, and Microsoft Entra, with a focus on level 400-500 technical depth. Key Responsibilities: Communicate Microsoft's strategic direction in cybersecurity, including its rationale, competitive advantages, and future roadmap … aligned with Orange Cyberdefenses advisory and managed service offerings Represent Microsoft's security narrative to customers, partners, and internal stakeholders. Provide deep technical guidance on Microsoft Defender, Sentinel, and Entra. Act as a trusted advisor in pre-sales engagements, supporting clients in understanding and adopting Orange Cyberdefense Microsoft security solutions. Translate complex technical concepts into business value for … senior technical role focused on Microsoft security technologies. Experience solutioning Microsoft services and solutions, tailored to meet client needs. Deep technical knowledge (Level 400-500) of Microsoft Defender, Sentinel, and Entra. Strong understanding of Microsoft's security strategy and competitive landscape. Experience engaging with enterprise customers in a pre-sales or technical advisory capacity. Excellent communication and public More ❯