8 of 8 Azure Sentinel Jobs in the City of London

looking for a hands-on technical expert to join our team and enhance our Microsoft Sentinel & Azure SIEM threat detection capabilities. The Role: Design, implement & tune advanced detection rules and analytics. Translate threat intelligence into actionable detection logic. Lead SIEM enhancements, integrations & content migration. Mentor junior … practices. Collaborate with IR & threat intel teams to refine detections. Skills: Proven experience in SIEM content development & threat detection. Strong expertise with Microsoft Sentinel, Azure & Logic Apps. Deep knowledge of MITRE ATT&CK, attacker TTPs & security principles. Strong analytical & problem-solving skills. ...

workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. Desirable Skills Experience with Microsoft Sentinel. Understanding of MITRE ATT and CK. Exposure ...

Cyber Security Engineer Focus: Azure/M365/Identity Management/SIEM/SOAR/Firewalls Salary: £70,000 + 20% Bonus + 20% Pension Location: Central London – Hybrid Join a prestigious financial organisation that has recently migrated to Azure Cloud and is now strengthening … while making a real impact. As a Security Engineer, you’ll take a hands-on role in implementing and managing security controls across Azure and Microsoft 365 environments. You’ll work closely with IT and project teams to embed security into solutions, troubleshoot issues, and ensure compliance with ...

cloud telemetry Develop, tune, and optimise detection rules aligned to MITRE ATT&CK Work extensively with the Microsoft Security stack , including Sentinel, Defender XDR, Entra ID, and M365 Security Improve SOC processes, playbooks, and response procedures to reduce MTTD and MTTR Support and mentor Level 1 and Level … Proven experience working as a Level 3/Senior SOC Analyst or equivalent role Strong hands-on experience with the Microsoft security ecosystem (Sentinel, Defender, MDE, MDI) Deep understanding of incident response , attacker TTPs, and kill-chain methodologies Experience creating and tuning SIEM detections and alerts Strong knowledge ...

understanding of how SOC operations integrate with IR. * Expert knowledge of technologies such as Microsoft security stack, DFIR tooling, SIEM, Microsoft Defender/Sentinel, EDR platforms, timeline analysis, and cloud environments (Azure, AWS, or GCP). * Exposure to penetration testing, including red team or purple team … supplier list for this position. Keywords Incident Response, Cyber Incident Responder, DFIR, Digital Forensics, SOC Analyst, Lead Incident Responder, Cybersecurity Analyst, SIEM, Microsoft Sentinel, Microsoft Defender, EDR, Azure Security, AWS Security, GCP Security, Threat Hunting, Cyber Threat Intelligence, MITRE ATT&CK, Red Team, Purple Team, Malware ...

role offers hybrid working with an expectation to attend the office 3 days per week. You will focus on hands-on remediation across Azure and endpoint environments, improving Defender for Cloud findings, closing vulnerabilities, and strengthening security posture. The role is delivery-led and ideal for someone … hardening, patching and policy deployment Entra ID, Conditional Access, PIM and cloud identity controls PowerShell and Microsoft Graph for automation Nice to have: Sentinel exposure, Zero Trust knowledge, regulated-sector experience. Certifications required: AZ-500, SC-100 (or working towards), plus ...

NIST, ISO 27701, and GDPR Oversee incident response, threat detection, and access governance across systems such as iManage, Intapp, Aderant, Microsoft 365, and Azure Drive firm-wide security awareness and training initiatives Monitor regulatory changes and emerging threats, and advise on best practices Ideal Candidate Profile: Strong knowledge … implementation and certification Experience in a professional services or legal environment Familiarity with Microsoft 365 Defender, SentinelOne, Purview, and Azure security tools Skilled in managing access controls and security operations across enterprise platforms Excellent communication and stakeholder engagement skills Desirable Attributes: Certifications such as CISM, CISSP ...

Engineer - Key Responsibilities Act as the primary escalation point for complex 2nd/3rd line incidents and service requests across infrastructure, networking, Azure, Microsoft 365, and cybersecurity. Manage and maintain client systems and centralized services, including Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, DR/BC, Huntress, Autotask … Skills & Experience Proven experience in a 3rd Line/Senior Engineer role within an MSP environment Strong knowledge of Microsoft technologies, including Azure, 365, SharePoint, and Intune Excellent understanding of networking, firewalls, VPNs, and Windows Server environments Experience with RMM tools, security platforms, and endpoint management Familiarity with ...