1 to 25 of 46 Remote Permanent Azure Sentinel Jobs

Job Title: SOC Engineer (Azure Sentinel & Google Chronicle) Location: Work from home Role: Join a leading Cyber Security company dedicated to helping organizations tackle their biggest security challenges. As a SOC Engineer, you’ll be part of a team that partners with clients to provide top-tier protection and threat detection using Azure Sentinel and Google Chronicle. If you have expertise in configuring and troubleshooting Azure Sentinel or Google Chronicle and want to work on exciting, impactful projects, this is the role for you. Work closely with clients to onboard and optimise their security infrastructure Troubleshoot and ensure the availability of critical systems Help shape industry standards for … compliance with those standards Provide technical expertise in logs from operating systems and security tools Skills/Must have: At least 1 year of hands-on experience with Azure Sentinel or Google Chronicle configuration and troubleshooting Knowledge of log ingestion systems, including firewalls, antivirus, switches, EDR tools, and Windows/Linux servers Experience working in Unix More ❯

We’re looking for a hands-on technical expert to join our team and enhance our Microsoft Sentinel & Azure SIEM threat detection capabilities. The Role: Design, implement & tune advanced detection rules and analytics. Translate threat intelligence into actionable detection logic. Lead SIEM enhancements, integrations & content migration. Mentor junior engineers and drive best practices. Collaborate with IR … threat intel teams to refine detections. Skills: Proven experience in SIEM content development & threat detection. Strong expertise with Microsoft Sentinel, Azure & Logic Apps. Deep knowledge of MITRE ATT&CK, attacker TTPs & security principles. Strong analytical & problem-solving skills. More ❯

We’re looking for a hands-on technical expert to join our team and enhance our Microsoft Sentinel & Azure SIEM threat detection capabilities. The Role: Design, implement & tune advanced detection rules and analytics. Translate threat intelligence into actionable detection logic. Lead SIEM enhancements, integrations & content migration. Mentor junior engineers and drive best practices. Collaborate with IR … threat intel teams to refine detections. Skills: Proven experience in SIEM content development & threat detection. Strong expertise with Microsoft Sentinel, Azure & Logic Apps. Deep knowledge of MITRE ATT&CK, attacker TTPs & security principles. Strong analytical & problem-solving skills. More ❯

models will also be valuable in this role. What we would like from you Duration: 2-4 years of experience in a SOC or cybersecurity-related role. Technologies: Microsoft Azure, Entra ID, Intune, Azure Arc, Defender XDR, EDR, Azure Sentinel, Cloudflare, and Mimecast. IT environments: Including Windows, Linux, VMware, and AKS. Security More ❯

models will also be valuable in this role. What we would like from you Duration: 2-4 years of experience in a SOC or cybersecurity-related role. Technologies: Microsoft Azure, Entra ID, Intune, Azure Arc, Defender XDR, EDR, Azure Sentinel, Cloudflare, and Mimecast. IT environments: Including Windows, Linux, VMware, and AKS. Security More ❯

Sentinel SME - 6 months - Remote - Outside IR35 We are seeking an experienced Microsoft Sentinel SME for a 6-month contract to work directly with a key customer. This role involves designing and implementing advanced security playbooks, providing expert-level guidance, and delivering robust security monitoring and response solutions using Microsoft Sentinel. Key Responsibilities: Design, configure, and … optimize Microsoft Sentinel environments for effective security monitoring. Develop and maintain custom analytics rules, workbooks, and playbooks. Implement automation and orchestration of incident response using Sentinel and related tools. Act as the primary subject matter expert (SME) on Microsoft Sentinel for the customer. Collaborate with stakeholders to tailor Sentinel use cases to … the customer's security requirements. Provide ongoing support, tuning, and troubleshooting of Sentinel implementations. Ensure best practices for threat detection, incident response, and monitoring are applied. What You Will Ideally Bring: Deep, hands-on experience with Microsoft Sentinel and Azure security services. Strong understanding of SIEM concepts, log ingestion, and security operations workflows. Proven More ❯

Azure Security Architect Location: UK (Remote) Salary: Up to £100,000 + Excellent Benefits I'm working with one of Microsoft’s most respected Azure Expert MSPs, who are growing their Azure practice and looking for an Azure Security Architect to lead the charge on all things security. This is a strategic … and highly visible role, shaping customer security outcomes, influencing the direction of the Azure Security practice, and defining how the business delivers secure cloud environments moving forward. You’ll combine deep technical knowledge with a consultative mindset, taking ownership from architecture through delivery, while building scalable frameworks that align with Microsoft best practices. The Role As Azure Security Architect, you’ll: Own and evolve the Azure Security portfolio, ensuring alignment with Microsoft Lead customer-facing workshops that turn security strategy into real world solutions. Design, implement, and optimise Azure security solutions. Develop repeatable frameworks and security roadmaps. Contribute to pre-sales , supporting solution design, high-level proposals, and SoW creation. Collaborate More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

years’ experience within a similar support based role, ideally in the managed services space across the Microsoft technology stack Experience in Entra ID, Intune, and Azure. Knowledge of Sentinel, and Microsoft Defender. Experience working within a SOC environment would be advantageous. Demonstrable experience in forming collaborative working relationships with customers and other internal stakeholders. Confidence in effectively communicating More ❯

Workplace roadmap aligned with business goals. Lead technology selection and integration (e.g., Microsoft 365, Teams, Intune, Citrix). Manage Unified Endpoint Management (UEM) using Microsoft Intune, SCCM, and Azure AD. Oversee device lifecycle management, including provisioning, patching, and retirement (laptops, desktops, mobile, peripherals). Deploy and manage Azure Virtual Desktop (AVD) for remote and hybrid workforces. … Utilise Azure Autopilot for device provisioning and configuration. Integrate Azure Monitor, Log Analytics, and Sentinel for endpoint visibility and security. Leverage Azure AD Conditional Access and Identity Protection for secure access. Collaborate with InfoSec to enforce endpoint security policies. Ensure compliance with GDPR, ISO 27001, and internal governance. Lead initiatives to improve … Digital Experience Monitoring (DEM) tools. Administer and optimise Microsoft 365 ecosystem (Exchange, SharePoint, OneDrive). Drive adoption of collaboration platforms (Teams, Slack, Zoom). Integrate VDI solutions (Citrix, Azure Virtual Desktop) for remote access. Automate account provisioning via Azure AD and HR system integration. Assign appropriate roles and group memberships based on job function. Provision access More ❯

and lead on incident response. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements … compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive background in SOC operations, incident response, and threat hunting. Expertise with the Microsoft security stack, including: Microsoft Sentinel (SIEM/SOAR) Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365 Microsoft Entra ID (Azure AD) Microsoft Purview (compliance and data protection) Strong knowledge of More ❯

authority and governance for the effective use of technical security controls across the firm Act as an escalation point for threat hunting and security incidents Investigate alerts from Azure/Defender, IT monitoring systems, and 3rd-party SOC, helping to ensure critical assets remain secure Manage supplier relationships, report on control effectiveness, and support compliance with ISO … GDPR, and Cyber Essentials Plus Technology NIST, CIS, NCSC, Mitre Att&ck, Security Scorecard, M365/Azure Security Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS, SaaS More ❯

and we don’t expect you to have all those here, so don’t be put off. Training is available to develop these skills. Public Cloud Security Tooling - Azure & AWS Microsoft 365: Intune, Entra ID, Defender suite of tools inc. Sentinel, Purview suite of tools, Exchange Online, SharePoint, Teams VMware Server and Storage Hardware Microsoft Windows More ❯

ll Bring • 3 to 5 years of experience in a SOC, security engineering or cyber operations environment • Hands on experience with SIEM or EDR platforms such as Microsoft Sentinel, Splunk, Defender, CrowdStrike or Elastic • Proven ability to build and tune detection rules, dashboards and automation playbooks • Knowledge of scripting or automation using KQL, PowerShell, Python or similar • Familiarity … with log management, APIs and data normalisation • Understanding of cloud security across Azure, AWS and M365 • Strong grasp of network, system and identity security fundamentals • Analytical mindset and passion for problem solving and continuous improvement Desirable Experience • Experience with SOAR platforms such as Microsoft Sentinel Automation, Cortex XSOAR or Splunk SOAR • Knowledge of MITRE ATT&CK More ❯

This Role Stands Out Join a $1B global IT and Cyber Defence provider that invests heavily in people and technology Work with cutting edge platforms such as Microsoft Sentinel, Defender, Elastic and Palo Alto Be part of a collaborative culture that values curiosity and continuous learning Clear progression into leadership or specialist technical roles Hybrid working model, flexible … cyber defence environment Strong understanding of attack methodologies such as MITRE ATT&CK and the Cyber Kill Chain Hands on experience with SIEM and EDR tools including Microsoft Sentinel, Defender, Splunk or CrowdStrike Experience with triage, containment and incident response Solid understanding of networks, Windows and Linux systems and cloud security across M365, Azure and AWS More ❯

Cyber Security Engineer 💰 Salary: Up to £65,000 📍 Location: Mostly Remote (occasional office visits) 🖥️ Tech Stack: Microsoft Security Suite – Sentinel, Defender, Intune, Entra, etc. We’re looking for a Cyber Security Engineer to join our clients growing team someone who’s passionate about protecting systems, data, and people. You’ll play a key role in strengthening our security … the flexibility to work from home and only occasional travel to the office for team sessions or project work. 🔍 What you’ll be doing: Managing and optimising Microsoft Sentinel, Defender for Endpoint, and related security tools Responding to security incidents, analysing alerts, and improving detection capabilities Working closely with IT and infrastructure teams to enhance security configurations Conducting … threat analysis, vulnerability management, and system hardening Supporting compliance and best practice across the organisation 🧠 What we’re looking for: Solid experience with Microsoft security tools (Sentinel, Defender, Intune, Entra) Knowledge of SIEM, incident response, and threat detection Familiarity with Azure and general cloud security principles Strong problem-solving mindset and attention to detail Great communication More ❯

status updates to clients as needed. Collaborate with internal SOC and engineering teams to resolve complex incidents. Gain exposure to SIEM alert triage and basic investigation using Microsoft Sentinel or LogPoint (training provided). Essential Skills & Experience 1–2+ years of experience in a networking or firewall support role (or equivalent hands-on experience). Strong understanding of … remote monitoring tools. Strong communication and documentation skills. Desirable Skills & Experience Hands-on experience with Fortinet FortiGate and/or Check Point SmartConsole. Exposure to SIEM platforms (Microsoft Sentinel, LogPoint) or SOC environments (training provided). Relevant certifications (e.g., Fortinet NSE4, Check Point CCSA, CompTIA Network+/Security+). Knowledge of ITIL processes and service management best practices. … Familiarity with cloud networking and security (AWS, Azure). Awareness of scripting or automation (Python, PowerShell). Why Join? Be part of a fast-growing cybersecurity business with a strong technical reputation. Gain exposure to enterprise-level network environments and leading firewall vendors. Work alongside experienced security professionals in a supportive team. Opportunities for training, certifications, and long More ❯

GRC). Requirements In-depth understanding of the incident response lifecycle — preparation, detection, containment, eradication, recovery, and lessons learned. Hands-on experience with SIEM tools such as Splunk, Sentinel, or QRadar — including log analysis and data correlation. Strong familiarity with EDR platforms like CrowdStrike, SentinelOne, or Carbon Black. Working knowledge of network security , including protocols, firewalls, IDS/… IPS, and traffic analysis. Experience with cloud security principles in AWS, Azure, or GCP. Ability to interpret and apply threat intelligence to improve controls and detection coverage. Experience with MacOS preferred Strong communication skills — capable of articulating complex technical issues to both technical and non-technical stakeholders. Proven track record of managing vendor relationships and holding third-party More ❯

GRC). Requirements In-depth understanding of the incident response lifecycle — preparation, detection, containment, eradication, recovery, and lessons learned. Hands-on experience with SIEM tools such as Splunk, Sentinel, or QRadar — including log analysis and data correlation. Strong familiarity with EDR platforms like CrowdStrike, SentinelOne, or Carbon Black. Working knowledge of network security , including protocols, firewalls, IDS/… IPS, and traffic analysis. Experience with cloud security principles in AWS, Azure, or GCP. Ability to interpret and apply threat intelligence to improve controls and detection coverage. Experience with MacOS preferred Strong communication skills — capable of articulating complex technical issues to both technical and non-technical stakeholders. Proven track record of managing vendor relationships and holding third-party More ❯

CET is looking for a Senior Technical Engineer to join our growing Technology team and help strengthen and secure our Microsoft 365 and Azure environments. This is a hands-on, second-line support role at the core of a modern, cloud-first business focusing on security, resilience, and continuous improvement. You’ll be the go-to expert for … Microsoft 365, Azure, and our wider cyber-defence tools, ensuring our systems remain robust, compliant, and optimised for performance. If you thrive on solving complex technical challenges and enjoy working within a collaborative, forward-thinking team, we’d love to hear from you. What You’ll Be Doing Deliver expert 3rd line support for internal systems and services. … to elevate service quality. What You’ll Bring Essential Skills: Proven experience in 3rd line support with a strong focus on Microsoft 365 and Azure. Deep knowledge of Azure AD, MFA, SSO, Conditional Access, and Identity Management. Hands-on experience with Microsoft Defender, Sentinel, Purview, Log Analytics, and Azure Backup/VMs. Solid understanding More ❯

defence, helping to design and deliver solutions that strengthen resilience and enable smarter security operations. You will: Architect & Design : Build and evolve secure frameworks using Microsoft Security (Defender, Sentinel, Purview, Entra) and integrate Qualys vulnerability management for continuous threat detection and remediation. Automate & Innovate: Lead the charge on automation (SOAR, IaC, workflow automation) and embed Gen AI into … Expert, AZ-500, etc.). Strategic mindset, strong communication skills, and a passion for emerging tech. The following would also be of interest: Certifications in automation/cloud (Azure Solutions Architect, Terraform, GIAC), vulnerability management (Qualys, ISO 27001, NIST). Experience with SOAR, SIEM, XDR, and cloud-native security (especially Azure). Pre-sales or solution More ❯