1 to 25 of 30 Kusto Query Language Jobs in the UK

tooling, and network security. Certifications such as CISSP, CEH, GIAC, AZ-500, SC-100 , or relevant vendor-specific credentials. Scripting proficiency in Python, PowerShell, KQL (Kusto Query Language), or Kibana Query Language . Strong analytical mindset with the ability to process large datasets, detect threats ...

Azure environments. Integrate with observability tools such as Azure Monitor, Log Analytics, and custom dashboards. Write and optimise Kusto Query Language (KQL) queries for diagnostics and analytics. Support, Troubleshooting & Leadership Provide expert-level performance tuning, query optimisation, and incident troubleshooting. Lead SQL Server upgrades, migrations … database-related IaC. Hands-on experience with Azure DevOps, Git, YAML pipelines, and CI/CD for database deployments. Experience writing Kusto queries (KQL) for Azure Monitor, Log Analytics, or diagnostics. Strong experience supporting SSRS, SSAS, and SSIS in hybrid environments. Ability to design and manage scalable monitoring solutions ...

managing Azure Monitor, Log Analytics workspaces, Application Insights, and Azure dashboards. Experience creating alert rules, action groups, workbooks, and analysing metrics and logs using KQL (Kusto Query Language). Skilled in performance troubleshooting, implementing Azure Service Health monitoring, and setting up distributed tracing. Ideally, knowledge and experience ...

supporting C#/.NET Core/MVC web applications with SQL Server backends and Azure Blob Storage. Advanced Azure diagnostics (Application Insights, Log Analytics, Kusto Query Language). Proficient in SQL for investigation and remediation. Scripting and automation skills in PowerShell and/or C#. Understanding … Blob Storage, scaling strategies. Experience in capacity planning, SLOs, and error budget management Azure Monitor, Application Insights, Log Analytics, Azure Data Explorer (KQL), Azure Functions, Logic Apps, PowerShell, C#, SQL Server Management Studio, Azure Storage Explorer, Power BI (for reporting). The Senior Azure Support Engineer responsibilities and tasks: Monitor ...

supporting C#/.NET Core/MVC web applications with SQL Server backends and Azure Blob Storage. Advanced Azure diagnostics (Application Insights, Log Analytics, Kusto Query Language). Proficient in SQL for investigation and remediation. Scripting and automation skills in PowerShell and/or C#. Understanding … Blob Storage, scaling strategies. Experience in capacity planning, SLOs, and error budget management Azure Monitor, Application Insights, Log Analytics, Azure Data Explorer (KQL), Azure Functions, Logic Apps, PowerShell, C#, SQL Server Management Studio, Azure Storage Explorer, Power BI (for reporting). The Senior Azure Support Engineer responsibilities and tasks: Monitor ...

practices for data governance and self-service analytics. Responsibilities Build and maintain Power BI reports, dashboards, and datasets using DAX, Power Query (M), KQL, and SQL. Develop reusable data models and implement CI/CD pipelines in Azure DevOps. Manage Power BI Service administration, including security and refresh schedules. … share knowledge across teams. Qualifications Strong Power BI development experience (reports, dashboards, data models). Advanced knowledge of DAX, Power Query (M), KQL, and Power BI Service. Expertise in SQL and relational database design. Familiarity with Azure DevOps for CI/CD and version control. Understanding of data warehousing ...

practices for data governance and self-service analytics. Responsibilities Build and maintain Power BI reports, dashboards, and datasets using DAX, Power Query (M), KQL, and SQL. Develop reusable data models and implement CI/CD pipelines in Azure DevOps. Manage Power BI Service administration, including security and refresh schedules. … share knowledge across teams. Qualifications Strong Power BI development experience (reports, dashboards, data models). Advanced knowledge of DAX, Power Query (M), KQL, and Power BI Service. Expertise in SQL and relational database design. Familiarity with Azure DevOps for CI/CD and version control. Understanding of data warehousing ...

Automation & Integration : Using Sentinel Graph, Microsoft Graph Security API, playbooks, Logic Apps, Power Automate. Threat Management : SIEM for detection, response, hunting; SOAR workflow design; KQL queries, custom rules, UEBA. Identity & Access Security : Entra ID, Conditional Access, Identity Protection, PIM. Email Security : Microsoft Defender for O365, Darktrace AI, anti-phishing, Safe ...

experience in Cyber Security, Threat Intelligence, or SOC environments. Hands-on experience with Azure Security Center, Microsoft Sentinel, Defender ATP, M365 Security & Compliance, and KQL scripting. Knowledge of frameworks such as MITRE ATT&CK, NIST, CIS, NCSC, and Security Scorecard. Understanding of network security systems (Zscaler, Darktrace, Firewalls ...

roles (MSSP experience advantageous). Advanced expertise with: CrowdStrike Falcon EDR (RTR, Forensics, Custom IOA, Identity Protection) LogScale/Next-Gen SIEM (AQL/KQL queries, dashboards, pipelines) SIEM technologies and EDR/MDR workflows in 24×7 security operations Strong automation and scripting skills (Python, PowerShell, Bash). Proficiency ...

with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io/Tenable.sc). Knowledge of industry security frameworks (ISO 27001, NIST, CIS). Strong ...

with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io/Tenable.sc). Knowledge of industry security frameworks (ISO 27001, NIST, CIS). Strong ...

with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io/Tenable.sc). Knowledge of industry security frameworks (ISO 27001, NIST, CIS). Strong ...

Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS, SaaS) Authentication (Windows, AAD, Managed Identity) Microsoft 365 security and compliance You Passionate about cyber security, thriving ...

team capability Nice to have: Certifications like Microsoft SC-200, GCIA, GCIH, BTL1, or CompTIA Security+ MSSP/MDR experience across multiple customer environments KQL expertise for log analysis and detection development Scripting skills in PowerShell or Python Threat intelligence platform experience Familiarity with compliance frameworks (Cyber Essentials ...

platforms (Microsoft Azure ecosystems), other vendor security systems are good experiences as well (e.g. CyberArk, Akeyless) Good knowledge of EDR systems e.g. MS Defender, KQL etc. (or alternatively the willingness to learn them) Planned and meticulous approach to deliveries. Knowledge and/or willingness to learn about advanced security capabilities ...

Azure servers (P2), with a focus on advanced threat detection and automated response. Skilled in Microsoft Sentinel SIEM/SOAR setup, tuning, and KQL query development for detection engineering and incident investigation. PowerShell/Python scripting for automating Microsoft security tooling, plus experience securing DNS, DKIM/DMARC ...

platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. Desirable Skills Experience with Microsoft Sentinel. Understanding of MITRE ATT and CK. Exposure to red team activities. Familiarity with automation using PowerShell. Professional Attributes ...

cyber security, ideally within a Managed Service Provider Deep experience with Microsoft Defender suite (MDE, MDO, MDCA, MDI) and Microsoft Sentinel Strong knowledge of KQL, Logic Apps, and automation/orchestration tools Skilled in endpoint, identity, and cloud security Familiar with Microsoft 365 and Azure security best practices Excellent communicator ...

cyber security, ideally within a Managed Service Provider Deep experience with Microsoft Defender suite (MDE, MDO, MDCA, MDI) and Microsoft Sentinel Strong knowledge of KQL, Logic Apps, and automation/orchestration tools Skilled in endpoint, identity, and cloud security Familiar with Microsoft 365 and Azure security best practices Excellent communicator ...

have Proven experience deploying and managing Microsoft Defender (across all versions), Sentinel, Intune, and Windows security solutions, as well as strong proficiency in KQL, authentication protocols, and conditional access policies. Practical knowledge of endpoint security across both server and end-user environments, including Active Directory, Entra ID, Windows and RHEL ...

Security Engineer - SIEM, KQL- sought by investment bank based in London. *Inside IR35 - 3 days a week on-site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost … further details - Alex Reeder Harvey Nash 3+ years in a Security Engineer, SOC Analyst, or similar role Hands-on experience with Microsoft Sentinel and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity with security frameworks (MITRE ...

kill switch; confirm data residency and sovereignty alignment prior to wider enablement. Telemetry, automation, and evidence: Enable Purview Audit and Copilot analytics; build KQL/Log Analytics/Power BI dashboards and custom reports; maintain configuration‐as‐code baselines with drift detection to evidence readiness and ongoing compliance. Licensing ...

doing As SOC Analyst, you will: Operate, tune and configure SIEM tools Monitor and triage security alerts, applying custom queries (e.g. KQL) and correlation rules to detect suspicious activity. Investigate security incidents across endpoints, networks, and cloud environments; perform root-cause analysis, impact assessment and containment actions. Develop and maintain … hands-on experience with SIEM tooling, alerts triage, detection logic, and security incident workflows. Ability to write and optimise detection queries (e.g. in KQL), review firewall and security logs, manage email/web filtering policies, and implement/review Data Loss Prevention (DLP) controls. Experience with automation or scripting (e.g. ...

Terraform , and scripting with PowerShell/Python . Monitor and optimise cloud performance using Azure Monitor , Service Health , and advanced query tools (KQL). Implement FinOps principles to control costs and ensure efficient use of public funds. Integrate security best practices with Microsoft Defender for Cloud and maintain compliance ...