2 of 2 Kusto Query Language Jobs in Lanarkshire

escalated triage and analysis on security events identified by Tier 1 Analysts Apply expertise in SIEM solutions utilising Kusto Query Language (KQL) Identify and escalate critical threats to Tier 3 Analysts with detailed analysis for further action Monitor the threat landscape and document findings on evolving threat … using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis Able to demonstrate proficient knowledge using Kusto Query Language (KQL) to search and filter logs effectively. Familiar with open-source intelligence (OSINT) techniques to aid in identifying potential threats and gathering information. Able to communicate More ❯

Conduct escalated triage and threat analysis of security events raised by Tier 1 Analysts. Use SIEM tools and Kusto Query Language (KQL) for log correlation and deep analysis. Escalate critical threats to Tier 3 Analysts with well-documented incident details. Investigate anomalous behaviour and enrich data using … Windows/Linux environments , and user authentication . Hands-on experience with SIEM tools (eg, Azure Sentinel , ArcSight) and familiarity with XDR platforms. Demonstrable KQL skills for filtering, correlating, and analysing logs. Working knowledge of OSINT for threat intelligence and contextual enrichment. Effective communicator - both technical and non-technical - with More ❯