5 of 5 Kusto Query Language Jobs in Gloucester

reliability. Provide recommendations and solutions to ensure consistent highl level of service to customers. Develop scripts and queries (Kusto Query Language - KQL, PowerShell, Python) for log analysis. Implement automated remediation workflows where possible. Recommend improvements to architecture based on performance data. Work closely with engineering, DevOps, and … or DevOps support. Strong knowledge of Microsoft Azure services (App Service, SQL Database, Blob Storage, Azure Monitor, Application Insights, Log Analytics). Proficiency in KQL (Kusto Query Language) for log analysis. Experience with automation scripting (PowerShell, Python, or Azure Functions). Familiarity with SIEM tools (Splunk, ELK More ❯

Key Requirements: At least 4 years of experience in a SOC environment, handling high-profile incidents. Strong knowledge of Microsoft Security tools: Defender, Sentinel, KQL, etc. Experience with hybrid-cloud SOC environments, preferably Azure and AWS. Proven projects in SecOps Engineering and Automation. If you are an experienced SecOps Specialist More ❯

Privileged Access Management (PAM) tools such as CyberArk and/or IGA platforms like SailPoint ISC is advantageous. General proficiency in Microsoft tooling, PowerShell, KQL, Copilot etc. Certifications (Preferred) Microsoft Certified: Identity and Access Administrator Associate Other relevant Microsoft or security certifications Soft Skills Strong problem-solving and analytical abilities. More ❯

content autonomously. Build relationships outside the HMG community with external SOCs and cybersecurity researchers to identify beneficial analytics, tradecraft, and threat intelligence. Develop complex KQL analytics and playbooks for detection rules against M365 environments and host-based analytics for Linux and Windows VMs. Review open-source research on threats impacting … detection rules. Use of statistical methods for anomaly detection. Advanced practical experience with Microsoft Sentinel and/or Microsoft XDR. Proficiency in writing complex KQL analytics/searches. Strong awareness of the latest security threats. Ability to prioritize threats and assess detection effectiveness. Threat hunting or SOC analyst certifications are More ❯

both communicating suggestions for funding/prioritisation to technical lead, and working as lead implementor when required. Development of new complex and anomaly-based KQL analytics, and associated playbooks that result in creation of bespoke detection rules/analytics against M365 environments, plus host-based analytics for Linux and Windows … statistical methods to find anomalies in data Advanced Practical use of Microsoft Sentinel and/or Microsoft XDR Competent in writing med-highly complex KQL analytics/searches Strong knowledge of latest threats in security Ability to prioritise threats Determine factors that contribute to a detection's effectiveness Threat hunting More ❯