1 to 25 of 42 Azure Sentinel Jobs in the UK

their roles. Your new role This is a cloud-focused infrastructure position where your primary responsibility will be supporting and enhancing the Microsoft Azure environment. You'll play a key role in designing and deploying secure, resilient Azure infrastructure and services that underpin the organisation … operations. Your day-to-day work will involve managing and administering a wide range of Azure resources, including compute, storage, networking, identity, and security services. You'll also be responsible for automating infrastructure provisioning, using Infrastructure as Code tools such as Terraform or ARM templates, to ensure efficiency ...

design" solutions are woven into the fabric of the entire ecosystem. Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra … overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows ...

secure-by-design" solutions are woven into the fabric of the entire ecosystem.Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra … overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows ...

Azure Platform Engineer Remote £650 - £700 per day inside ir35 6 months+ SC security clearance is required for this role Role Overview I am looking for experienced Azure Cloud Platform Engineers to support the design, delivery, and operation of secure, MOD-aligned cloud platforms across … defence and national security programmes. Key Responsibilities Design, build, and support secure Azure cloud platforms in line with MOD and NCSC standards Implement Infrastructure as Code using Terraform, Bicep, or ARM templates Engineer Azure networking solutions including VNets, NSGs, Azure Firewall, Private Endpoints ...

workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. Desirable Skills Experience with Microsoft Sentinel. Understanding of MITRE ATT and CK. Exposure ...

understanding of the required security controls to secure complex architectural solutions hosted on premise and in the Cloud. Experience of managing security in Azure and M365, including the full suite of E5 security tools/Defender products. Experience of working with Azure Sentinel , defining … implementing and managing security controls on network access control systems such as Firewall, IDS, WAF and network segmentation technology. Experience of automation with Azure Logic Apps, PowerBI or similar. Experience of network management and automation desirable. Successful experience of implementing Cyber/IT Security in a fast-paced ...

effective manner. Specifically you will: Support the rest of the security operations team to monitor, triage and investigate alerts and incidents within Sentinel Conduct initial incident triage, determining scope, urgency and appropriate actions to mitigate threats. Participate in the incident response process, assisting with investigation and remediation. Support … appreciation of how new security solutions can impact delivery. Experience with general security technologies and capabilities including Microsoft E5 technologies such as Azure Sentinel and the various Defender products would be a distinct advantage, as would exposure to automation and familiarity with Python to help streamline ...

PRTG). Microsoft Technologies Strong Windows Server (Apply online only)), AD, Group Policy, and systems admin. Working knowledge of Exchange Online. Experience with Azure AD and hybrid identity. Familiar with Intune and JAMF for device management. Solid Office 365 and Windows 10/11 admin skills. Virtualisation & Cloud … Skilled in Hyper-V and VMware (resource management, backups, failover). Exposure to Azure, AWS, GCP for migrations and optimisation. Communication Systems Experience with enterprise VoIP systems. Knowledge of IP CCTV setup, storage, and network integration. Backup & DR Proficient with Veeam for backup/replication. Experience ...

Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server … Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc. ...

tooling, ensuring platforms are secure, scalable and reliable Oversee log ingestion pipelines, integrations and onboarding across hybrid environments Provide technical leadership across Microsoft Sentinel, Defender and Azure security services Drive automation and SOAR capability using Logic Apps and playbooks Work closely with detection engineers and threat … engineering, security architecture or similar cyber security roles Strong leadership and people-management capability In-depth knowledge of Microsoft security technologies (Sentinel, Defender, Log Analytics, Azure) Experience with scripting and automation (PowerShell, Python, Logic Apps) Strong understanding of cyber security frameworks (MITRE ATT&CK, NCSC ...

customer inquiries and support issues, spanning a variety of industries and technologies. This includes, but is not limited to, Public Cloud environments (Microsoft Azure and AWS), Microsoft 365, on-premise servers, and networks. Role Network infrastructure development: We've laid the groundwork for new leisure developments, ensuring seamless … Microsoft Fabric to build robust, scalable applications that set new standards in performance and usability Advanced security solutions: Our work with tools like Azure Sentinel places us at the vanguard of cybersecurity, safeguarding our clients' digital assets against evolving threats Training Why choose our Network Engineer ...

customer inquiries and support issues, spanning a variety of industries and technologies. This includes, but is not limited to, Public Cloud environments (Microsoft Azure and AWS), Microsoft 365, on-premise servers, and networks. As an Ofcom-registered ISP, we also offer a spectrum of connectivity solutions, including broadband … Microsoft Fabric to build robust, scalable applications that set new standards in performance and usability Advanced security solutions: Our work with tools like Azure Sentinel places us at the vanguard of cybersecurity, safeguarding our clients' digital assets against evolving threats Who we’re looking ...

skills, the ability to engage with both technical and executive stakeholders, and a strong understanding of cloud-native security solutions-particularly within the Azure ecosystem. Key Responsibilities Design and develop end-to-end enterprise security architectures, including infrastructure, data ingestion pipelines, and cloud security posture components. Lead … implementation and optimization of Microsoft security technologies such as Sentinel , Defender XDR , SOAR , and integrations involving DevOps (IDE/CI/CD) and Cribl . Develop advanced security analytics, threat intelligence models, and monitoring capabilities for cloud and hybrid environments. Work closely with engineering, DevOps, and security operations ...

reviews, and digital assurance. Maintain the technical security roadmap and drive improvements across tooling and capabilities. Operate and optimise core security tools (Defender, Sentinel, Tenable, CASB) and track control adoption through KPIs and dashboards. Lead and document security initiatives, including hardening guides, architecture diagrams, and evidence packs. Chair … certifications (Security+, CEH, CySA+, Cloud Security Engineer). Significant experience in cyber security operations or incident response. Hands-on expertise with Microsoft Defender, Sentinel, Tenable, CASB, and cloud security (AWS/Azure). Proven security project delivery, PowerShell automation skills, and familiarity with IR frameworks. Consulting ...

will play a key role in helping to protect front-line policing from cyber-attacks. Configuration and maintenance of the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Development, maintenance, and deployment of detection rules and other SIEM content. Creation of custom solutions using both … code and traditional development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creation and ongoing maintenance of technical design documentation Working with ...

best practices Previous experience working for a consultancy Nice to Have Certifications (AZ-500, SC-200, CySA+, BTL1/2) Microsoft 365 & Azure security tooling (Sentinel, Defender) PowerShell and KQL experience Working Pattern & Package 37.5 hours per week, shift-based with on-call escalation 90% remote ...

detection strategy and roadmap, aligning initiatives with KPIs and contractual requirements. Develop, optimise, and maintain high-fidelity detections using Splunk , Microsoft Sentinel , KQL , SPL , and Python for automation and Detection as Code. Work closely with cloud platforms ( AWS and Azure ) to enhance detection capabilities in hybrid … with day-to-day responsibilities. Essential Skills and Experience: SC clearance required to start; DV sponsorship available. Proven expertise with Splunk and Microsoft Sentinel SIEM platforms. Strong programming skills in Python , with experience developing automation and Detection as Code pipelines. Proficiency in KQL and SPL for creating efficient ...

experience Windows Server installation & configuration Virtualisation Vulnerability Scanning tools such as Qualys Cloud Platforms Experience with private & public cloud such as AWS & Azure Security Experience with MDM, MFA, Email filtering, Next generation firewalls & Anti-Virus solutions, SIEM Solutions such as Sentinel Skills An ability to work ...

SentinelOne Architect/SME - Remote - 3-4 months + (SentinelOne, Sentinel One) Blue chip client is looking for a SentinelOne Architect/SME Role is remote MUST BE PAYE THROUGH UMBRELLA (INSIDE IR35) Role Description: MUST HAVE: experience with SentinelOne and not Azure/Microsoft Sentinel ...

Secure on prem & cloud infra (zero trust, segmentation, VPN, firewalls, IDS/IPS) • Hardening Windows/Linux VMware/Hyper V • SIEM (Sentinel/Alienvault) • EDR • Vulnerability management (Qualys) • Azure/AWS strong IAM & Conditional Access • M365 security: Defender for Office 365, DLP, Secure Score/ ...

prem LDAP applications, and outdated protocols like Kerberos and NTLM. Automation: Streamline operations by automating identity tasks using PowerShell, Microsoft Graph API, and Azure CLI. Governance & Compliance: Ensure all platforms meet hardening standards and assist with audit readiness for frameworks such as ISO 27001, GDPR, or PCI DSS. … What We’re Looking For Essential Experience: Expertise in Microsoft Identity: Proven track record with Azure Entra ID, Active Directory, and managing hybrid-to-cloud transitions. Device Management: Strong proficiency in Microsoft Intune/Endpoint Manager and modern Windows device transformation. Security Tooling: Hands-on experience deploying ...

modern technologies, this role will suit you perfectly. You’ll act as a key escalation point for technical issues across Microsoft 365, Azure, Windows Server, networking and endpoint management. You’ll work extensively with their RMM platform and cybersecurity tooling—including SentinelOne, Huntress and backup solutions … line engineers and seeing issues through to full resolution Monitoring, managing and remediating systems using RMM tools Troubleshooting issues across Microsoft 365, Azure AD, Windows Server and endpoint devices Supporting endpoint security, EDR platforms (SentinelOne, Huntress) and backup solutions Assisting with deployments, migrations and infrastructure upgrades Escalating complex ...

Engineer - Key Responsibilities Act as the primary escalation point for complex 2nd/3rd line incidents and service requests across infrastructure, networking, Azure, Microsoft 365, and cybersecurity. Manage and maintain client systems and centralized services, including Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, DR/BC, Huntress, Autotask … Skills & Experience Proven experience in a 3rd Line/Senior Engineer role within an MSP environment Strong knowledge of Microsoft technologies, including Azure, 365, SharePoint, and Intune Excellent understanding of networking, firewalls, VPNs, and Windows Server environments Experience with RMM tools, security platforms, and endpoint management Familiarity with ...

role offers hybrid working with an expectation to attend the office 3 days per week. You will focus on hands-on remediation across Azure and endpoint environments, improving Defender for Cloud findings, closing vulnerabilities, and strengthening security posture. The role is delivery-led and ideal for someone … hardening, patching and policy deployment Entra ID, Conditional Access, PIM and cloud identity controls PowerShell and Microsoft Graph for automation Nice to have: Sentinel exposure, Zero Trust knowledge, regulated-sector experience. Certifications required: AZ-500, SC-100 (or working towards), plus ...

understanding of how SOC operations integrate with IR. Expert knowledge of technologies such as Microsoft security stack, DFIR tooling, SIEM, Microsoft Defender/Sentinel, EDR platforms, timeline analysis, and cloud environments (Azure, AWS, or GCP). Exposure to penetration testing, including red team or purple team ...