3 of 3 Kusto Query Language Jobs in Bolton

incident response .Correlate multi-source telemetry (network, endpoint, identity, cloud) to identify and contain threats. Threat Hunting & Detection Engineering: Perform proactive threat hunting using KQL within Microsoft Sentinel. Develop and fine-tune custom analytics rules, workbooks, and hunting queries. - Apply the MITRE ATT&CK framework to build coverage and improve … science, Cybersecurity, Engineering, or a related field. Hands-on experience in cybersecurity operations. Experience with Microsoft Sentinel and Microsoft Defender suite. Strong skills in KQL (Kusto Query Language) and Security architecture and data integration, Azure and Microsoft 365 security services Experience in onboarding and managing log sources ...

Exposure to Microsoft Sentinel, Google SecOps, or other SIEM platforms. Experience with Defender, CrowdStrike, SentinelOne, or similar XDR tools. Ability to query using KQL, XQL, S1QL, CQL, or similar languages. Awareness of threat intelligence concepts. Basic scripting or coding knowledge. Working Pattern & Clearance Shift pattern: 12-hour shifts ...

alerting, and KPIs/SLAs across data platform to enable consistent measurement of data reliability. Identify and create Azure Monitor alert rules and develop KQL queries to extract metrics and logs from Azure Monitor/Log Analytics for reliability tracking and alerting. Write SQL queries and PowerShell (or another scripting … quality enforcement Automation Experience for data validations, reconciliations and generating alerts. Experience with Azure Monitor, setting up Alert rules, building dashboards using data queried (KQL) from Log Analytics. Experience with Fabric Data Factory, Azure Data Factory, Synapse pipelines, and PySpark notebooks Hands-on experience calling REST/OData APIs ...