Microsoft Sentinel Engineer

ABOUT MVW TECHNOLOGY CONSULTING

We are a rapidly growing Microsoft 365 and Workplace Management consultancy with offices in the UK, South America and Asia. We delight our customers with our personalised approach, highly dedicated and professional team, rapid mobilization of technology projects, and delivery of tangible benefits across productivity, mobility and security.

POSITION SUMMARY

Cyber Security Engineer providing engineering capability to the cybersecurity services team, being instrumental in the development of the Security Operations Centre (SOC), and supporting and mentoring other members of the wider team.

RESPONSIBILITIES

Develop and optimise SOC processes and procedures and train the SOC team on how to follow them efficiently and effectively

Design, develop and deliver Sentinel solutions to clients

Use the MITRE ATT&CK cybersecurity knowledge base to enable the necessary steps to take to help predict an adversarys behaviour and next move, and quickly and effectively respond to an attack.

Develop and optimize automation rules and playbooks in the SIEM (Microsoft Sentinel)

Carry out cost optimisation, considering what data tiering and appropriate filtering to ensure a cost effective solution for clients.

Assist in the onboarding and continued development of SOC clients and various aspects of their security stack into the SIEM.

Work closely with management to develop service improvement plans

Integrate various data sources into Sentinel for use in platform such as NGFW, IAM solutions and network telemetary.

Act as an escalation point during peaks in demand and as and when required

Work closely with Information security management and senior security consultants to develop internal security posture, policies and controls in accordance with the organisations ISO 27001 certification.

EXPERIENCE

A minimum of 3 years experience working within as a Microsoft Sentinel Engineer

Hands on skills/experience identifying, investigating, containing and remediating sophisticated security attacks

Analytical rule automation and playbook development

Design, implementation, and integration of a SIEM solutions into a customer environment

Security management tooling such as intrusion detection and prevention, data loss prevention, firewall, VPN, filtering and traffic inspection, and security reporting

Strong understanding of Microsoft 365 and Office 365 security products e.g. Microsoft Defender for Endpoints and Microsoft Defender for Office 365

Development of runbook procedures and incident management processes (desirable)

Parsing of different format data into Sentinel

Experience with complex Sentinel architecture

Experience cost optimisation of Sentinel solution

Experience with on-premises infrastructure (desirable)

Sentinel Data Lake solution (desirable)

Integration of third-party solutions into Sentinel via suitable methods.

QUALIFICATIONS AND SKILLS

English level C1 or above

Strong analytical and documentation skills

Bachelor's degree or equivalent experience

Microsoft Sentinel SIEM

Strong scripting skills in PowerShell, Kusto Query Language, Python (highly advantageous)

Strong understanding of encryption technologies (TLS/SSL, PKI, IPSec, AES)

Microsoft 365 Security & Compliance

Microsoft Defender for Endpoints

Microsoft Defender for Office 365

Microsoft Defender for Cloud Apps

Microsoft Secure Score

Microsoft 365 related certifications (desirable)

CISSP, CompTIA Security+ or equivalent certification (desirable)

Ethical Hacker certification (desirable)

GDPR and ISO 27001 framework

PERSONAL ATTRIBUTES

Motivated self-starter

Customer-facing skills

Problem solving skills

Attention to detail

Personable and professional manner

Process orientated

Humble

We actively encourage applications from individuals with disabilities and try to provide access, adjustments, equipment, or other practical support where required.

We welcome applications from people with backgrounds that are traditionally underrepresented in tech and truly believe diversity is the key to creativity and innovation.