alerts and responding to them appropriately Experience working through cyber investigations independently Proven experience of Splunk or Sentinel Worked with EDR systems such as Defender or Symantec Knowledge of KQL and SPL Threat Hunting experience Experience working with third-party suppliers and vendors?? Familiarity with enterprise security controls and security best practices for Windows, Linux, and Mac systems or similar More ❯
Tier-1 GPO design/governance, SPN hygiene, gMSA adoption, and service-account policies (length/rotation). Automation-first: PowerShell and Microsoft Graph for audits, enforcement, and remediation; KQL, Terraform, Python; policy/config-as-code mindset in a DevOps environment. Exposure tooling: Hands-on with BloodHound/AzureHound and PingCastle (collection, analysis, and driving remediation). Quest ecosystem More ❯
Milton Keynes, Buckinghamshire, England, United Kingdom
Lynx Recruitment Ltd
activity baselines and integrate external enrichment sources Deploy and tune EDR, NDR, and XDR, mapping detection to MITRE ATT&CK Skills & Experience: Strong Defender XDR expertise (integration, tuning, automation, KQL) SIEM engineering (Sentinel, LogRhythm) and Infrastructure as Code (ARM, Bicep, Terraform) Background in EDR/NDR implementation and cloud migration This is a long-term contract in a secure setting More ❯
