26 to 50 of 55 Kusto Query Language Jobs in the Midlands

complex Microsoft Sentinel at SMC and enterprise Understanding of security telemetry across identity, endpoint, cloud, and network layers Experience in SIEM content development, including KQL, analytics rules, and custom data connectors Scripting and engineering skills – Python, PowerShell, APIs, Function Apps A background in cyber threat detection, incident response or DFIR More ❯

complex Microsoft Sentinel at SMC and enterprise Understanding of security telemetry across identity, endpoint, cloud, and network layers Experience in SIEM content development, including KQL, analytics rules, and custom data connectors Scripting and engineering skills – Python, PowerShell, APIs, Function Apps A background in cyber threat detection, incident response or DFIR More ❯

Experience with Microsoft Sentinel at SMC and enterprise levels Understanding of security telemetry across identity, endpoint, cloud, and network Skills in SIEM content development (KQL, analytics rules, connectors) Scripting skills in Python, PowerShell, APIs, Function Apps Background in threat detection, incident response, or DFIR (preferred) Ability to work in fast More ❯

Experience with CI/CD tools (Azure DevOps, GitHub) and agile delivery practices Familiarity with ITIL processes and cloud-native monitoring tools (Application Insights, KQL) Excellent problem-solving skills and the ability to communicate with both technical and non-technical teams Nice to Have Experience with Dynamics 365 integrations or More ❯

Experience with CI/CD tools (Azure DevOps, GitHub) and agile delivery practices Familiarity with ITIL processes and cloud-native monitoring tools (Application Insights, KQL) Excellent problem-solving skills and the ability to communicate with both technical and non-technical teams Nice to Have Experience with Dynamics 365 integrations or More ❯

Desirable skills/knowledge/experience: • MDM (Informatica) • Data Governance (Collibra) • Utilities experience • Experience with SCADA, eSCADA, telemetry, SAP PM, GIS • Terraform • Bicep • Python, Kusto All of our opportunities require that applicants are eligible to work in the specified country/location, unless otherwise stated in the job description. More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built, developed or led on More ❯

clock. Your Responsibilities: Be part of the 24×7 team (4-on 4-off shift patterns). Monitor security incidents and investigate incidents. Create KQL queries. Management of Microsoft Sentinel. Ability to tune analytical rules. Manage EDR tools such as Carbon Black, CrowdStrike, and Defender. If you’re interested in More ❯

Privileged Access Management (PAM) tools such as CyberArk and/or IGA platforms like SailPoint ISC is advantageous. General proficiency in Microsoft tooling, PowerShell, KQL, Copilot etc. Certifications (Preferred) Microsoft Certified: Identity and Access Administrator Associate Other relevant Microsoft or security certifications Soft Skills Strong problem-solving and analytical abilities. More ❯

Privileged Access Management (PAM) tools such as CyberArk and/or IGA platforms like SailPoint ISC is advantageous. General proficiency in Microsoft tooling, PowerShell, KQL, Copilot etc. Certifications (Preferred) Microsoft Certified: Identity and Access Administrator Associate Other relevant Microsoft or security certifications Soft Skills Strong problem-solving and analytical abilities. More ❯

Privileged Access Management (PAM) tools such as CyberArk and/or IGA platforms like SailPoint ISC is advantageous. General proficiency in Microsoft tooling, PowerShell, KQL, Copilot etc. Certifications (Preferred) Microsoft Certified: Identity and Access Administrator Associate Other relevant Microsoft or security certifications Soft Skills Strong problem-solving and analytical abilities. More ❯

Privileged Access Management (PAM) tools such as CyberArk and/or IGA platforms like SailPoint ISC is advantageous. General proficiency in Microsoft tooling, PowerShell, KQL, Copilot etc. Certifications (Preferred) Microsoft Certified: Identity and Access Administrator Associate Other relevant Microsoft or security certifications Soft Skills Strong problem-solving and analytical abilities. More ❯

Privileged Access Management (PAM) tools such as CyberArk and/or IGA platforms like SailPoint ISC is advantageous. General proficiency in Microsoft tooling, PowerShell, KQL, Copilot etc. Certifications (Preferred) Microsoft Certified: Identity and Access Administrator Associate Other relevant Microsoft or security certifications Soft Skills Strong problem-solving and analytical abilities. More ❯

Mapping, ETL Mapping • Data Governance (Purview, Databrick Unity Catlog) • MDM (Profisee, Informatica) Desirable skills/knowledge/experience: • MDM (Informatica) • Data Governance (Collibra) • Python, Kusto • Utilities experience • Experience with SCADA, eSCADA, telemetry, SAP PM, GIS • Azure Event Hub, Azure Kafka, Azure IoT Hub, ADX All of our opportunities require More ❯