24 of 24 Permanent Azure Sentinel Jobs in Slough

Job Title: Azure DevOps Platform Engineer Job Type: Permanent Location: London (Hybrid) Industry: Fintech Startup Salary: £60,000-£75,000 (Dependant on experience) Skills: Azure, Containerisation, Kubernetes, AKS, Docker, Azure SQL, Service Bus Roc Search are looking for an experienced DevOps Platform Engineer with … deep expertise in Azure, Azure DevOps, and related technologies to join an exciting fast-paced Fintech startup client in London. The successful candidate will work alongside their Lead Systems Engineer. In this role, you’ll implement, manage, and support mission-critical, client-facing Azure … be suited for a Mid Level Engineer with 2-5 years of DevOps experience Responsibilities: ▪ Maintain and configure scalable, highly available, and secure Azure hosted solutions ▪ Provide support for business-critical infrastructure resources and application components, across development, test and client production environments ▪ Manage Entra ID for secure More ❯

and other core security products. (e.g. Crowdstrike, Carbon Black, Splunk, and/or the Microsoft security technologies) A solid working knowledge of Windows Azure Active Directory, Windows OS, Mac OS … Virtualization, SQL Server, networking protocols, certificates, virtual and physical client/servers. Some hands-on experience with one or more of the following: Microsoft Azure Sentinel, Microsoft 365 Defender, and Azure Defender suite of security solutions (i.e. Defender for Endpoint, Defender for Identity, Defender … for Office365, MSFT Cloud App Security), Azure Active Directory, Azure Security Center, Azure Log Analytics, and M365 suite of solutions. AZ-500 and MS-500 Certifications are very welcome but not a strict requirement. Ability to work well with diverse teams. Provide product and More ❯

their influence spanning over 40 countries. Their mission to make a positive impact continues to gain momentum Purpose To manage and monitor our Azure-based SaaS solution in order to ensure system reliability and a high standard of customer service at all times. To detect any issues in … resolved appropriately. To use data to build historical trend analyses and provide reporting. Your Responsibilities and Tasks Monitoring & Incident Detection Implement and manage Azure Monitor, Application Insights, and Log Analytics to track system performance. Set up automated alerts for App Service, SQL Database, and Blob Storage to detect … generating reports to improve system reliability and customer experience. 3+ years’ experience in cloud monitoring, data analysis, or DevOps support. Strong knowledge of Microsoft Azure services (App Service, SQL Database, Blob Storage, Azure Monitor, Application Insights, Log Analytics). Proficiency in KQL (Kusto Query Language) for More ❯

cloud monitoring and automation within a high-performing team. Role Overview: You'll play a key role in managing and monitoring a robust Azure-based SaaS platform, ensuring system reliability and a seamless customer experience. Responsibilities include: Proactively detecting and escalating issues before they impact users Investigating incidents … to identify trends and produce detailed reports Required Skills: 3+ years’ experience in cloud monitoring, data analysis, or DevOps support Strong expertise in Microsoft Azure services (App Service, SQL DB, Blob Storage, Azure Monitor, Application Insights, Log Analytics) Automation scripting (PowerShell, Python, Azure Functions … UK and have been UK-based for the past 5 years (due to security clearance requirements) Desirable: Familiarity with SIEM tools (Splunk, ELK, Azure Sentinel) Proficient in KQL (Kusto Query Language) Microsoft certifications: Azure Administrator Associate (AZ-104), Azure Solutions Architect Expert More ❯

years in enterprise cybersecurity IT, with Cloud and On-premise experience. Incident Response and Investigations experience. Microsoft Security certifications or equivalent (MS365/Azure). Knowledge of modern operating systems, networking protocols, and cyber risks. Ability to manage multiple projects and maintain confidentiality. Effective communication skills for technical More ❯

Role Lead the design, deployment and tuning of enterprise-grade SIEM platforms (e.g. Splunk, Azure Sentinel etc.) Collaborate with stakeholders to define logging requirements, use cases, detection rules and dashboards Oversee integration of data sources from cloud, on-prem, endpoint, network and application layers Create and … and capacity planning Skills Expertise in SIEM design, deployment and optimisation Hands-on expertise with one or more major SIEM platforms (e.g. Splunk, Sentinel etc.) Deep understanding of log ingestion, parsing, normalisation and enrichment Strong grasp of MITRE ATT&CK framework, threat detection and alert logic Solid scripting …/automation skills (e.g., Python, PowerShell, Bash) Experience with cloud logging and monitoring (AWS CloudTrail, Azure Monitor, GCP etc.) Experience with threat modelling, cloud security or Identity and Access Management is desirable More ❯

Security policy, compliance, and user awareness in relation to the OT\ SCADA systems Incident investigation and documentation Utilisation of the Microsoft Security Stack – Azure Sentinel, Defender, Purview In order to be suitable you will need the following background: 3+ years’ experience within a technical security role More ❯

Job Title: Senior Microsoft Sentinel Consultant To £85,000 + Benefits + Microsoft Fully Remote, UK (*Global Microsoft Managed MISA Partner + complex Sentinel Engineering/Integration) The Opportunity This is a standout opportunity for a Microsoft Sentinel expert to step into a high … involving nation-state threat actors (including IR, CH, and NK based campaigns) while refining your craft across enterprise-scale log ingestion and customised Sentinel integration engineering that will stretch your skills, give you opportunity to ingest complex logs from a mass of cloud and data sources and the … chance to learn these as you go. The Role You'll own and optimise enterprise-wide log onboarding into Microsoft Sentinel – deploying standard and custom connectors, Function Apps, and parsers to build tailored SIEM solutions that drive real-world threat detection and response. Log ingestion at scale across More ❯

Due to government-based clients, this role also requires eligibility to obtain SC Clearance. Roles & Responsibilities Create, maintain, and optimise Logic Apps and Sentinel playbooks to automate incident detection and response workflows in Microsoft Sentinel. Develop and implement API integrations between Microsoft Sentinel and other systems … Monitor and maintain automation tools to ensure they function as expected, identifying opportunities for further improvements. Skills & Experience Hands-on experience with Microsoft Sentinel: proven track record in developing playbooks, automation workflows, and incident response processes within Microsoft Sentinel. Experience in building and maintaining workflows with Azure … in KQL, JSON, and PowerShell. Good written and verbal communication skills. Technical understanding of IT infrastructure – Microsoft 365 suite, Defender XDR, Entra ID (Azure Active Directory), Azure Portal. More ❯

high volumes of incidents. Deep technical expertise in Microsoft security tools and solutions, including but not limited to Microsoft Defender, E5/A5, Sentinel, and Azure Security. Strong analytical and problem-solving skills, with the ability to make sound decisions under pressure. Demonstrated experience in incident More ❯

Detection (e.g., XDR tools like Carbon Black, Microsoft Defender XDR, CrowdStrike) Strong KQL capabilities for log analysis and detection tuning Cloud Security (Microsoft Azure, Google Cloud Platform) Kubernetes and container technologies (e.g., Docker) Threat Hunting, Detection Engineering, Incident Response Security Automation (SOAR), Hyper Automation practices Familiarity with the … MITRE ATT&CK framework SIEM platforms (Microsoft Sentinel, Splunk, Google Chronicle, etc.) Experience with Zero Trust Network Architecture, IDS/IPS, vulnerability scanners, and web proxies Scripting or programming (Python, PowerShell, Bash, etc.) Join a global leader at the forefront of data-driven customer insights, where you’ll More ❯

analysis and incident response. Deep knowledge of IPv4/IPv6, TCP networking protocols, and the OSI model. Expertise in security tools: SIEM (ArcSight, Sentinel, QRadar, Splunk), EDR (Microsoft Defender, FireEye), IDS/IPS, firewalls, proxies, web application firewalls, and anti-virus technologies. Strong knowledge of Linux and Windows … operating systems. Familiarity with SOAR technologies (e.g., IBM Resilient, Splunk Phantom, SIEMplify) and cloud platforms (e.g., AWS, Azure, O365). Experience investigating intrusions in Linux and cloud environments. Proficiency in scripting, regular expression development, and query optimization (e.g., Kusto, SQL). If you’re ready to step up More ❯

our growing customer base. Day-to-day you will be responsible for: Monitoring: Monitor security alerts generated by our SIEM solutions (primarily Microsoft Sentinel, but also Elastic and Datadog) and assess their severity and impact. Intelligence Feeds: Analyse threat intelligence feeds to identify potential threats and vulnerabilities relevant … to our clients’ environments. Development: Develop and implement new detection rules within Microsoft Sentinel to maintain and expand coverage of the MITRE ATT&CK framework, ensuring comprehensive threat detection. Response: Respond to security incidents by following the established incident response runbooks and procedures. Automation: Design and develop Logic … field. At least one years industry experience working within a Security Operations team monitoring and responding to incidents. Hands on expertise within Microsoft Sentinel and Microsoft Defender. To be a Microsoft certified Security Operations Analyst Associate (SC-200). To possess the following skills: Problem-Solving: Ability to More ❯

line technical support, manage SaaS platforms like Microsoft 365, and contribute to enhancing the company’s security posture using tools such as Intune, Sentinel, and Defender. You’ll also collaborate with various teams to drive improvements in security, technical support, and compliance with frameworks like ISO 27001. Key … Responsibilities: Offer technical support for hardware, software, and SaaS solutions. Administer and optimize Microsoft 365 services and Azure Active Directory. Monitor and implement security best practices using Defender and Sentinel. Collaborate with the security operations team to address incidents and enhance protection. Continuously improve systems and processes to More ❯

Configure and manage Microsoft Defender for Office 365/Cloud/Endpoint/Servers, Purview (Information Protection, Data Loss Prevention), and Microsoft Entra (Azure AD) security features. Experience of integrating with MS Sentinel and working with existing SOC teams to adopt Sentinel technology capability. More ❯

NIS2, NIST 800-30) Confident in using risk assessment methodologies (NIST 800-30). Hands-on experience with SIEM/XDR solutions (QRadar, Sentinel, Defender XDR) Familiarity with cloud security principles across AWS, Azure, and GCP, ideally within a managed services environment Ideal candidates will hold … CySA+ Any SIEM Analyst Certification Microsoft Certified Security Operations Analyst Associate EC-Council ECIH (Incident Handling) Multi-cloud Security Fundamentals training (AWS/Azure/GCP) GCIH (GIAC Certified Incident Handler) What’s on offer?: Gym Membership Scheme Holidays – starting at 24 days + Bank Holidays Pension Plan More ❯

to stakeholders through meetings and reports. Provide guidance on threat detection best practices. Technical Skills & Experience: Proficient with SIEM/XDR tools (QRadar, Sentinel, Defender XDR). Strong knowledge of NIST CSF, NCSC CAF, and cloud security (AWS, Azure, GCP). Experienced in risk methodologies (e.g. More ❯

take on a Senior and develop the security systems whilst still being very hands on. Experience required Familiar with NIST, ISO 27001, ITIL Azure - 5 years experience Info Sec (Azure AD, Defender, Sentinel) PIM/PAM Audits and report writing Assessments Vulnerability Management and More ❯

to the design and implementation, across several of the skills and technologies below: Microsoft Defender for Endpoint Microsoft Defender for Office 365 Microsoft Sentinel Tenable Vulnerability Management (Or similar technology) Azure Security understanding Azure update Manager/Other Patching technologies Qualifications: Microsoft Security Certifications More ❯

a Security Operations or SOC environment, with previous leadership or senior analyst responsibilities. Strong working knowledge of Microsoft Security solutions such as: Microsoft Sentinel (SIEM) Defender for Endpoint, Office 365, or Identity Solid understanding of incident response processes and best practices. Familiarity with MITRE ATT&CK framework and … communication and leadership skills, with the ability to influence and guide both technical and non-technical stakeholders. Desirable: Experience with KQL and customising Sentinel detections. Exposure to cloud security operations (Azure preferred). Microsoft certifications such as SC-200 or AZ-500 are a bonus but More ❯

solve complex challenges, and deliver solutions tailored to modern enterprise needs. Design and implement robust cloud security architectures across multi-cloud platforms (AWS, Azure, Google Cloud). Design and deploy IAM solutions to ensure robust authentication, authorisation and access controls. Lead threat modelling exercises to identify, assess and … mitigate risks in systems and applications. Lead the design, implementation and optimisation of SIEM solutions (e.g. Splunk, Sentinel). Integrate SIEM systems with other security tools like EDR, SOAR and threat intelligence feeds. Skills Extensive experience in Cyber Security, with a significant portion in a leadership role. A … SOC engineering tools combined with expertise in either cloud security, Identity & Access Management or threat modelling. Proficiency in cloud platforms and services (AWS, Azure, GCP) with deep knowledge of native security tools. Hands-on experience designing and implementing SIEM solutions in enterprise environments. Skilled in scripting and automation More ❯

in a SOC environment, dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge of the Microsoft Security stack – Defender, Sentinel, etc Knowledge of various Incident Response techniques and procedures. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. If you More ❯

aware access control and secure cloud networking. Key Responsibilities Configure and deploy Cloudflare ZTNA policies to control secure access to development environments in Azure Set up Cloudflare Gateway features (DNS filtering, HTTP inspection, etc.) for secure browsing and egress control Integrate Cloudflare services with: Entra ID/Azure Active Directory for identity management SIEM platforms (likely Microsoft Sentinel) for log forwarding and visibility Coordinate with the client’s Azure infrastructure partners to ensure smooth integration Produce documentation and operational handover material toward the end of delivery Required Skills & Experience Strong hands-on … experience with Cloudflare Enterprise features, especially ZTNA and Gateway Proven experience implementing Zero Trust access policies in cloud environments Experience integrating Cloudflare with Azure AD/Entra ID and SIEM tools Understanding of secure cloud networking principles and Zero Trust architecture Experience in multi-cloud environments (Azure More ❯

IT policies and procedures. Tech stack wise, they're a Microsoft house, so you can expect to be working with technologies such as Azure, Entra, Intune, Sentinel, and Purview. The ideal candidate will have the following: Demonstrated leadership and mentorship abilities. Experience overseeing and managing projects. More ❯