1 to 25 of 44 Remote Azure Sentinel Jobs in England

We’re looking for a hands-on technical expert to join our team and enhance our Microsoft Sentinel & Azure SIEM threat detection capabilities. The Role: Design, implement & tune advanced detection rules and analytics. Translate threat intelligence into actionable detection logic. Lead SIEM enhancements, integrations & content migration. Mentor junior engineers and drive best practices. Collaborate with IR … threat intel teams to refine detections. Skills: Proven experience in SIEM content development & threat detection. Strong expertise with Microsoft Sentinel, Azure & Logic Apps. Deep knowledge of MITRE ATT&CK, attacker TTPs & security principles. Strong analytical & problem-solving skills. More ❯

We’re looking for a hands-on technical expert to join our team and enhance our Microsoft Sentinel & Azure SIEM threat detection capabilities. The Role: Design, implement & tune advanced detection rules and analytics. Translate threat intelligence into actionable detection logic. Lead SIEM enhancements, integrations & content migration. Mentor junior engineers and drive best practices. Collaborate with IR … threat intel teams to refine detections. Skills: Proven experience in SIEM content development & threat detection. Strong expertise with Microsoft Sentinel, Azure & Logic Apps. Deep knowledge of MITRE ATT&CK, attacker TTPs & security principles. Strong analytical & problem-solving skills. More ❯

Job Title: Azure Platform Engineer Location: Huddersfield - Hybrid, 2 days per week onsite Salary: Up to £55,000 per annum Why Apply? This is a newly created Azure Platform Engineer position within a business undergoing a major cloud transformation, migrating from a hosted data centre to Microsoft Azure. You'll play a pivotal role in shaping … optimising, and supporting their Azure environment, working within a collaborative IT team of seven. This role is perfect for someone with a strong technical foundation who thrives in a hands-on, solutions driven environment. Responsibilities: Lead and support the migration and optimisation of applications and services within Azure Cloud. Act as a 3rd line escalation point … Service Management. Oversee and coordinate third-party activities to ensure smooth service delivery. Identify and remediate vulnerabilities, contributing to ongoing security and compliance efforts. Requirements: Strong background in Microsoft Azure Infrastructure and cloud administration. Hands-on experience with Defender, Intune, Azure Policy, and Microsoft 365. Knowledge of RMM platforms and modern device provisioning. Exposure to traditional More ❯

models will also be valuable in this role. What we would like from you Duration: 2-4 years of experience in a SOC or cybersecurity-related role. Technologies: Microsoft Azure, Entra ID, Intune, Azure Arc, Defender XDR, EDR, Azure Sentinel, Cloudflare, and Mimecast. IT environments: Including Windows, Linux, VMware, and AKS. Security More ❯

models will also be valuable in this role. What we would like from you Duration: 2-4 years of experience in a SOC or cybersecurity-related role. Technologies: Microsoft Azure, Entra ID, Intune, Azure Arc, Defender XDR, EDR, Azure Sentinel, Cloudflare, and Mimecast. IT environments: Including Windows, Linux, VMware, and AKS. Security More ❯

Sentinel SME - 6 months - Remote - Outside IR35 We are seeking an experienced Microsoft Sentinel SME for a 6-month contract to work directly with a key customer. This role involves designing and implementing advanced security playbooks, providing expert-level guidance, and delivering robust security monitoring and response solutions using Microsoft Sentinel. Key Responsibilities: Design, configure, and … optimize Microsoft Sentinel environments for effective security monitoring. Develop and maintain custom analytics rules, workbooks, and playbooks. Implement automation and orchestration of incident response using Sentinel and related tools. Act as the primary subject matter expert (SME) on Microsoft Sentinel for the customer. Collaborate with stakeholders to tailor Sentinel use cases to … the customer's security requirements. Provide ongoing support, tuning, and troubleshooting of Sentinel implementations. Ensure best practices for threat detection, incident response, and monitoring are applied. What You Will Ideally Bring: Deep, hands-on experience with Microsoft Sentinel and Azure security services. Strong understanding of SIEM concepts, log ingestion, and security operations workflows. Proven More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

adapt, grow, and thrive in an ever-evolving world by building, shaping, and optimising diverse talent strategies. On behalf of Tesco IMS, AMS are now looking for a Azure Engineer for a 6 month contract on a remote working model. Tesco IMS deal in the personal - from pet insurance for your best friend, and home insurance for peace … their customers or looking after their people, you'll find there's a warmth and friendliness to everything they do. Key responsibilities: We are looking for a seasoned Azure Engineer with a strong security mindset to lead the design and deployment of secure, scalable cloud solutions. This role is ideal for professionals who thrive in greenfield environments and … have a proven track record of building regulated services in Microsoft Azure. Lead the architecture and implementation of complex greenfield Azure environments from the ground up. Design and deploy secure, compliant cloud services aligned with industry regulations (e.g., ISO 27001, NIST, GDPR). Configure and harden Azure services including Azure AD, Key Vault, Defender More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

role. Strong understanding of security principles, threat landscapes, and incident response. Hands-on experience with SIEM platforms (e.g., Splunk, SentinelOne, Chronicle, etc.). Familiarity with cloud environments (AWS, Azure, GCP) and container security. Excellent analytical and communication skills. Why Join? Work with a globally recognised cyber security leader. Be part of a high-performing team with a strong More ❯

Workplace roadmap aligned with business goals. Lead technology selection and integration (e.g., Microsoft 365, Teams, Intune, Citrix). Manage Unified Endpoint Management (UEM) using Microsoft Intune, SCCM, and Azure AD. Oversee device lifecycle management, including provisioning, patching, and retirement (laptops, desktops, mobile, peripherals). Deploy and manage Azure Virtual Desktop (AVD) for remote and hybrid workforces. … Utilise Azure Autopilot for device provisioning and configuration. Integrate Azure Monitor, Log Analytics, and Sentinel for endpoint visibility and security. Leverage Azure AD Conditional Access and Identity Protection for secure access. Collaborate with InfoSec to enforce endpoint security policies. Ensure compliance with GDPR, ISO 27001, and internal governance. Lead initiatives to improve … Digital Experience Monitoring (DEM) tools. Administer and optimise Microsoft 365 ecosystem (Exchange, SharePoint, OneDrive). Drive adoption of collaboration platforms (Teams, Slack, Zoom). Integrate VDI solutions (Citrix, Azure Virtual Desktop) for remote access. Automate account provisioning via Azure AD and HR system integration. Assign appropriate roles and group memberships based on job function. Provision access More ❯

and lead on incident response. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements … compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive background in SOC operations, incident response, and threat hunting. Expertise with the Microsoft security stack, including: Microsoft Sentinel (SIEM/SOAR) Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365 Microsoft Entra ID (Azure AD) Microsoft Purview (compliance and data protection) Strong knowledge of More ❯

authority and governance for the effective use of technical security controls across the firm Act as an escalation point for threat hunting and security incidents Investigate alerts from Azure/Defender, IT monitoring systems, and 3rd-party SOC, helping to ensure critical assets remain secure Manage supplier relationships, report on control effectiveness, and support compliance with ISO … GDPR, and Cyber Essentials Plus Technology NIST, CIS, NCSC, Mitre Att&ck, Security Scorecard, M365/Azure Security Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS, SaaS More ❯

and we don’t expect you to have all those here, so don’t be put off. Training is available to develop these skills. Public Cloud Security Tooling - Azure & AWS Microsoft 365: Intune, Entra ID, Defender suite of tools inc. Sentinel, Purview suite of tools, Exchange Online, SharePoint, Teams VMware Server and Storage Hardware Microsoft Windows More ❯

ll Bring • 3 to 5 years of experience in a SOC, security engineering or cyber operations environment • Hands on experience with SIEM or EDR platforms such as Microsoft Sentinel, Splunk, Defender, CrowdStrike or Elastic • Proven ability to build and tune detection rules, dashboards and automation playbooks • Knowledge of scripting or automation using KQL, PowerShell, Python or similar • Familiarity … with log management, APIs and data normalisation • Understanding of cloud security across Azure, AWS and M365 • Strong grasp of network, system and identity security fundamentals • Analytical mindset and passion for problem solving and continuous improvement Desirable Experience • Experience with SOAR platforms such as Microsoft Sentinel Automation, Cortex XSOAR or Splunk SOAR • Knowledge of MITRE ATT&CK More ❯

This Role Stands Out Join a $1B global IT and Cyber Defence provider that invests heavily in people and technology Work with cutting edge platforms such as Microsoft Sentinel, Defender, Elastic and Palo Alto Be part of a collaborative culture that values curiosity and continuous learning Clear progression into leadership or specialist technical roles Hybrid working model, flexible … cyber defence environment Strong understanding of attack methodologies such as MITRE ATT&CK and the Cyber Kill Chain Hands on experience with SIEM and EDR tools including Microsoft Sentinel, Defender, Splunk or CrowdStrike Experience with triage, containment and incident response Solid understanding of networks, Windows and Linux systems and cloud security across M365, Azure and AWS More ❯

This is a strategic sales overlay role focused on supporting our sales teams in positioning, differentiating, and closing opportunities across Microsoft’s security portfolio - including Microsoft Defender XDR, Sentinel, Entra, Purview, and Defender for Cloud. You will act as a subject matter expert and trusted advisor, helping customers understand the value of Microsoft’s integrated security solutions and … Enablement & Technical Pre-Sales Collaborate with account executives and solution architects to position Microsoft security solutions effectively during customer engagements. Deliver compelling technical presentations and demos of Microsoft Sentinel, Defender for Cloud, Purview, and managed security services Translate customer security requirements into solution architectures using Microsoft technologies. Assist in crafting proposals, RFP responses, and statements of work with … tools and services. Advise customers on best practices for cloud security posture management, threat detection, data governance, and compliance. Product Expertise & Evangelism Maintain deep technical expertise in Microsoft Sentinel, Defender for Cloud, Purview, and related security offerings. Stay current with Microsoft’s security roadmap, product updates, and licensing changes. Act as a trusted advisor to customers and internal More ❯

status updates to clients as needed. Collaborate with internal SOC and engineering teams to resolve complex incidents. Gain exposure to SIEM alert triage and basic investigation using Microsoft Sentinel or LogPoint (training provided). Essential Skills & Experience 1–2+ years of experience in a networking or firewall support role (or equivalent hands-on experience). Strong understanding of … remote monitoring tools. Strong communication and documentation skills. Desirable Skills & Experience Hands-on experience with Fortinet FortiGate and/or Check Point SmartConsole. Exposure to SIEM platforms (Microsoft Sentinel, LogPoint) or SOC environments (training provided). Relevant certifications (e.g., Fortinet NSE4, Check Point CCSA, CompTIA Network+/Security+). Knowledge of ITIL processes and service management best practices. … Familiarity with cloud networking and security (AWS, Azure). Awareness of scripting or automation (Python, PowerShell). Why Join? Be part of a fast-growing cybersecurity business with a strong technical reputation. Gain exposure to enterprise-level network environments and leading firewall vendors. Work alongside experienced security professionals in a supportive team. Opportunities for training, certifications, and long More ❯

GRC). Requirements In-depth understanding of the incident response lifecycle — preparation, detection, containment, eradication, recovery, and lessons learned. Hands-on experience with SIEM tools such as Splunk, Sentinel, or QRadar — including log analysis and data correlation. Strong familiarity with EDR platforms like CrowdStrike, SentinelOne, or Carbon Black. Working knowledge of network security , including protocols, firewalls, IDS/… IPS, and traffic analysis. Experience with cloud security principles in AWS, Azure, or GCP. Ability to interpret and apply threat intelligence to improve controls and detection coverage. Experience with MacOS preferred Strong communication skills — capable of articulating complex technical issues to both technical and non-technical stakeholders. Proven track record of managing vendor relationships and holding third-party More ❯

GRC). Requirements In-depth understanding of the incident response lifecycle — preparation, detection, containment, eradication, recovery, and lessons learned. Hands-on experience with SIEM tools such as Splunk, Sentinel, or QRadar — including log analysis and data correlation. Strong familiarity with EDR platforms like CrowdStrike, SentinelOne, or Carbon Black. Working knowledge of network security , including protocols, firewalls, IDS/… IPS, and traffic analysis. Experience with cloud security principles in AWS, Azure, or GCP. Ability to interpret and apply threat intelligence to improve controls and detection coverage. Experience with MacOS preferred Strong communication skills — capable of articulating complex technical issues to both technical and non-technical stakeholders. Proven track record of managing vendor relationships and holding third-party More ❯

CET is looking for a Senior Technical Engineer to join our growing Technology team and help strengthen and secure our Microsoft 365 and Azure environments. This is a hands-on, second-line support role at the core of a modern, cloud-first business focusing on security, resilience, and continuous improvement. You’ll be the go-to expert for … Microsoft 365, Azure, and our wider cyber-defence tools, ensuring our systems remain robust, compliant, and optimised for performance. If you thrive on solving complex technical challenges and enjoy working within a collaborative, forward-thinking team, we’d love to hear from you. What You’ll Be Doing Deliver expert 3rd line support for internal systems and services. … to elevate service quality. What You’ll Bring Essential Skills: Proven experience in 3rd line support with a strong focus on Microsoft 365 and Azure. Deep knowledge of Azure AD, MFA, SSO, Conditional Access, and Identity Management. Hands-on experience with Microsoft Defender, Sentinel, Purview, Log Analytics, and Azure Backup/VMs. Solid understanding More ❯

defence, helping to design and deliver solutions that strengthen resilience and enable smarter security operations. You will: Architect & Design : Build and evolve secure frameworks using Microsoft Security (Defender, Sentinel, Purview, Entra) and integrate Qualys vulnerability management for continuous threat detection and remediation. Automate & Innovate: Lead the charge on automation (SOAR, IaC, workflow automation) and embed Gen AI into … Expert, AZ-500, etc.). Strategic mindset, strong communication skills, and a passion for emerging tech. The following would also be of interest: Certifications in automation/cloud (Azure Solutions Architect, Terraform, GIAC), vulnerability management (Qualys, ISO 27001, NIST). Experience with SOAR, SIEM, XDR, and cloud-native security (especially Azure). Pre-sales or solution More ❯