Leeds, West Yorkshire, England, United Kingdom Hybrid / WFH Options
4Square Recruitment Ltd
heart of the managed SOC services, monitoring, investigating, and responding to security incidents across client environments. You’ll leverage Microsoft Sentinel, Defender XDR, and KQL to detect threats, improve detection rules, and help clients stay secure. What You’ll Do: Monitor and analyse security alerts in Microsoft Sentinel & Defender XDR Investigate and respond to incidents, threats, and suspicious activity … KQL queries, analytics rules, and automation playbooks Assist in onboarding new clients into Sentinel (connectors, log sources, playbooks) Collaborate with engineers and clients to enhance security visibility Contribute to threat hunting, detection tuning, and SOC process improvements Skills You’ll Need: 2-5+ years in a SOC, threatdetection, or incident response role Hands-on More ❯
operations. The Opportunity This is not your average SOC role. As a Microsoft Sentinel Specialist , you'll be front and center in our managed SOC, leading the charge in threatdetection, incident response, and security monitoring across client environments. You'll bring deep expertise in Microsoft Sentinel and the wider Defender XDR suite , working directly with clients and … internal teams to detect real threats, fine-tune detection logic, and elevate visibility across complex infrastructures. What You'll Do Monitor and investigate security alerts in Microsoft Sentinel and Microsoft 365 Defender (Endpoint, Identity, Cloud, etc.). Respond to incidents - quickly, accurately, and with technical depth - following industry-standard IR playbooks. Threat hunt using advanced KQL queries; develop … integrating data connectors and building automation playbooks (Logic Apps). Create and maintain clear documentation , client reports, and actionable runbooks. Collaborate with client stakeholders and internal engineers to optimize detection coverage and incident resolution . Drive continuous improvement through automation, process refinement, and operational enhancements. What You Bring Must-Have Experience: 2-5+ years in a SOC or More ❯
