for the delivery of Microsoft SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell, KQL) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. Key Skills and Experience Experience contributing to large-scale, sprint-based … Azure specifically across Sentinel Content Hub, Sentinel Analytics, Sentinel Automation, Azure Event Hub, Azure Logic Apps Azure Function Apps. Experience in Sentinel/Analytics Rules/Logic App automations KQL Demonstrated ability in cybersecurity, with at least 5 years in a technical role in security operations and/or security software development. Solid understanding of security operations, automations standard processes More ❯
Cambridge, Cambridgeshire, England, United Kingdom
Hays Specialist Recruitment Limited
for the delivery of Microsoft SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell, KQL) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. Key Skills and Experience Experience contributing to large-scale, sprint-based More ❯
Cambridge, Cambridgeshire, United Kingdom Hybrid / WFH Options
RealVNC
Defender for Cloud. Liaising with our IT team to ensure log sources from endpoints, Azure/Azure AD, Entra ID, and Microsoft 365 are properly ingested. Develop and maintain KQL queries, analytics rules, threat hunting scripts, and automation logic. Work with internal teams to mitigate threats and implement recommendations - for example MFA enforcement, Conditional Access policies, and identity protection. Security More ❯
Cambridge, England, United Kingdom Hybrid / WFH Options
Connected Consulting Limited
Sentinel Expert/Security Automation Engineer, if you are then please read on! You’ll be the key technical lead across 3 main areas – 1) Log Onboarding, 2) Advanced KQL for Detection Engineering, and 3) Automation in Logic Apps. What You’ll Be Doing: Creating slick automations and SIEM detections to boost their incident response game. Leading the charge on … attack surface management to fine-tune our detections. Key Skills Required: Sentinel expertise, delivering technical solutions within large, complex businesses Security operations, automation best practices, and SIEM management. Advanced KQL skills Advanced Logic Apps experience A track record of contributing to large-scale security automation projects. Working Policy Hybrid working places are in place for this role, with 2 days More ❯
