6 of 6 Azure Sentinel Jobs in Scotland

able to obtain SC Clearance or already hold SC clearance. Must have a good understanding on Incident Response approaches Must have knowledge and hands-on knowledge of Microsoft Sentinel (or any SIEM tool). Strong verbal and written English communication. Strong interpersonal and presentation skills. Strong analytical skills Must have good understanding on network traffic flows and able … and Change Management. Ability to work with minimal levels of supervision. Threat Hunting & Detection (IOC & IOA Analysis, TTP Profiling, Cyber Kill Chain) SIEM Fine-Tuning & Optimisation (QRadar, Splunk, Sentinel, ArcSight) Incident Response & Forensics (MITRE ATT&CK, DFIR, Log Analysis) Threat Intelligence Analysis Security Analytics & Automation (SOAR, YARA Rules, Sigma Rules) Malware Analysis & Reverse Engineering Network & Endpoint Security Monitoring … a SOC/NOC environment. Preferably holds Cyber Security Certification e.g. ISC2 CISSP, GIAC, SC-200, Certified SOC Analyst Experience with Cloud platforms (AWS and/or Microsoft Azure) Excellent knowledge of Microsoft Office products, especially Excel and Word Reports to Security Director - NTT DATA UK Security Practice Client Delivery Director - NTT DATA UK Managed Services Who we More ❯

for the unsung heroes who will positively shape our future. What are the day-to-day tasks? Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead the design and deployment of conditional access, Defender for Cloud, Purview DLP, Azure Firewall, and related services. … Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container work flows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. Harden AKS clusters and cloud-native apps through role-based access … engineering road map in alignment with the Cyber Security Strategy. What skills and knowledge are we looking for? Deep hands-on knowledge of Microsoft security stack (M365 Defender, Sentinel, Intune, Azure Policy, PIM). Proven experience deploying Cisco Meraki and Umbrella in enterprise environments. Experience in securing Kubernetes, cloud-native infrastructure, and containerised apps. 5+ years More ❯

flows within a network. * Advanced knowledge of Windows and Linux operating environments, including standard commands, file systems, and user authentication mechanisms. * Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms. * Able to demonstrate proficient knowledge using Kusto Query Language (KQL More ❯

respond to evolving cyber threats. Your day-to-day will include: Leading as an escalation point for cyber incidents and alerts Integrating threat intelligence into Microsoft Defender and Sentinel Developing, tuning, and managing detection rules and response policies Performing threat hunting across client environments Maintaining and optimising our security tech stack (Defender XDR, Sentinel, Entra ID … Azure, M365) Onboarding clients to security platforms and managing secure configurations Supporting internal and client teams with technical reporting and analysis Mentoring junior engineers and contributing to a culture of continuous improvement What We’re Looking For: 3+ years in cyber security, ideally within a Managed Service Provider Deep experience with Microsoft Defender suite (MDE, MDO, MDCA, MDI … and Microsoft Sentinel Strong knowledge of KQL, Logic Apps, and automation/orchestration tools Skilled in endpoint, identity, and cloud security Familiar with Microsoft 365 and Azure security best practices Excellent communicator—comfortable explaining complex security risks to both tech teams and business leaders Passion for learning, team mentorship, and staying ahead of cyber threats Bonus More ❯

respond to evolving cyber threats. Your day-to-day will include: Leading as an escalation point for cyber incidents and alerts Integrating threat intelligence into Microsoft Defender and Sentinel Developing, tuning, and managing detection rules and response policies Performing threat hunting across client environments Maintaining and optimising our security tech stack (Defender XDR, Sentinel, Entra ID … Azure, M365) Onboarding clients to security platforms and managing secure configurations Supporting internal and client teams with technical reporting and analysis Mentoring junior engineers and contributing to a culture of continuous improvement What We're Looking For: 3+ years in cyber security, ideally within a Managed Service Provider Deep experience with Microsoft Defender suite (MDE, MDO, MDCA, MDI … and Microsoft Sentinel Strong knowledge of KQL, Logic Apps, and automation/orchestration tools Skilled in endpoint, identity, and cloud security Familiar with Microsoft 365 and Azure security best practices Excellent communicator—comfortable explaining complex security risks to both tech teams and business leaders Passion for learning, team mentorship, and staying ahead of cyber threats Bonus More ❯

architects, reviewing architecture documents, and ensuring best practices in solution delivery. Qualifications and Skills: Proficiency in SQL Server Business Intelligence Development Studio, SSRS, SSIS, SQL Server, Visual Studio, Azure Data Factory, Azure Databricks, Azure Synapse Analytics, Microsoft Fabric, and PySpark. Experience in developing reusable and dynamic ADF/Fabric pipelines. Strong communication skills for … and Purview Governance. Experience with Fabric Tenant Settings, Workspace Templates, and network configurations including VNET, Private Link, and Private DNS. Knowledge of logging and SIEM integrations with Microsoft Sentinel and ServiceNow. Understanding of deployment methodologies such as Waterfall, Agile, Scrum. More ❯