26 to 50 of 51 Azure Sentinel Jobs in Scotland

or already hold SC clearance. Must have a good understanding on Incident Response approaches Must have knowledge and hands-on knowledge of Microsoft Sentinel (or any SIEM tool). Strong verbal and written English communication. Strong interpersonal and presentation skills. Strong analytical skills Must have good understanding on … work with minimal levels of supervision. Threat Hunting & Detection (IOC & IOA Analysis, TTP Profiling, Cyber Kill Chain) SIEM Fine-Tuning & Optimisation (QRadar, Splunk, Sentinel, ArcSight) Incident Response & Forensics (MITRE ATT&CK, DFIR, Log Analysis) Threat Intelligence Analysis Security Analytics & Automation (SOAR, YARA Rules, Sigma Rules) Malware Analysis & Reverse … Preferably holds Cyber Security Certification e.g. ISC2 CISSP, GIAC, SC-200, Certified SOC Analyst Experience with Cloud platforms (AWS and/or Microsoft Azure) Excellent knowledge of Microsoft Office products, especially Excel and Word Reports to Security Director - NTT DATA UK Security Practice Client Delivery Director - NTT DATA More ❯

will positively shape our future. What are the day-to-day tasks? Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead the design and deployment of conditional access, Defender for Cloud, Purview DLP, Azure … related services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container workflows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. … with the Cyber Security Strategy. What skills and knowledge are we looking for? Deep hands-on knowledge of Microsoft security stack (M365 Defender, Sentinel, Intune, Azure Policy, PIM). Proven experience deploying Cisco Meraki and Umbrella in enterprise environments. Experience in securing Kubernetes, cloud-native infrastructure More ❯

will positively shape our future. What are the day-to-day tasks? Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead the design and deployment of conditional access, Defender for Cloud, Purview DLP, Azure … services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container work flows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. … with the Cyber Security Strategy. What skills and knowledge are we looking for? Deep hands-on knowledge of Microsoft security stack (M365 Defender, Sentinel, Intune, Azure Policy, PIM). Proven experience deploying Cisco Meraki and Umbrella in enterprise environments. Experience in securing Kubernetes, cloud-native infrastructure More ❯

be considered. Due to government-based clients, this role also requires eligibility to obtain SC Clearance. Create, maintain, and optimise Logic Apps and Sentinel playbooks to automate incident detection and response workflows in Microsoft Sentinel. Develop and implement API integrations between Microsoft Sentinel and other systems … Monitor and maintain automation tools to ensure they function as expected, identifying opportunities for further improvements. Skills & Experience Hands-on experience with Microsoft Sentinel: proven track record in developing playbooks, automation workflows, and incident response processes within Microsoft Sentinel. Experience in building and maintaining workflows with Azure … in KQL, JSON, and PowerShell. Good written and verbal communication skills. Technical understanding of IT infrastructure – Microsoft 365 suite, Defender XDR, Entra ID (Azure Active Directory), Azure Portal. #J-18808-Ljbffr More ❯

be considered. Due to government-based clients, this role also requires eligibility to obtain SC Clearance. Create, maintain, and optimise Logic Apps and Sentinel playbooks to automate incident detection and response workflows in Microsoft Sentinel. Develop and implement API integrations between Microsoft Sentinel and other systems … Monitor and maintain automation tools to ensure they function as expected, identifying opportunities for further improvements. Skills & Experience Hands-on experience with Microsoft Sentinel: proven track record in developing playbooks, automation workflows, and incident response processes within Microsoft Sentinel. Experience in building and maintaining workflows with Azure … in KQL, JSON, and PowerShell. Good written and verbal communication skills. Technical understanding of IT infrastructure – Microsoft 365 suite, Defender XDR, Entra ID (Azure Active Directory), Azure Portal. #J-18808-Ljbffr More ❯

will positively shape our future. What are the day-to-day tasks? Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead the design and deployment of conditional access, Defender for Cloud, Purview DLP, Azure … related services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container workflows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. … with the Cyber Security Strategy. What skills and knowledge are we looking for? Deep hands-on knowledge of Microsoft security stack (M365 Defender, Sentinel, Intune, Azure Policy, PIM). Proven experience deploying Cisco Meraki and Umbrella in enterprise environments. Experience in securing Kubernetes, cloud-native infrastructure More ❯

ensuring best practices in solution delivery. Qualifications and Skills: Proficiency in SQL Server Business Intelligence Development Studio, SSRS, SSIS, SQL Server, Visual Studio, Azure Data Factory, Azure Databricks, Azure Synapse Analytics, Microsoft Fabric, and PySpark. Experience in developing reusable and dynamic ADF/Fabric … Fabric Tenant Settings, Workspace Templates, and network configurations including VNET, Private Link, and Private DNS. Knowledge of logging and SIEM integrations with Microsoft Sentinel and ServiceNow. Understanding of deployment methodologies such as Waterfall, Agile, Scrum. More ❯

Social network you want to login/join with: Senior Microsoft Sentinel/SIEM Engineer, edinburgh col-narrow-left Client: Cloud Decisions Location: edinburgh, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 31.05.2025 Expiry Date: 15.07.2025 col-wide Job … Description: Job Title: To £85,000 + Benefits + Microsoft Fully Remote, UK (*Global Microsoft Managed MISA Partner + complex Sentinel Engineering/Integration) The Opportunity This is a standout opportunity for a Microsoft Sentinel expert to step into a high-impact, technically advanced role with … involving nation-state threat actors (including IR, CH, and NK based campaigns) while refining your craft across enterprise-scale log ingestion and customised Sentinel integration engineering that will stretch your skills, give you opportunity to ingest complex logs from a mass of cloud and data sources and the More ❯

col-wide Job Description: Job Title: To £85,000 + Benefits + Microsoft Fully Remote, UK (*Global Microsoft Managed MISA Partner + complex Sentinel Engineering/Integration) The Opportunity This is a standout opportunity for a Microsoft Sentinel expert to step into a high-impact, technically … involving nation-state threat actors (including IR, CH, and NK based campaigns) while refining your craft across enterprise-scale log ingestion and customised Sentinel integration engineering that will stretch your skills, give you opportunity to ingest complex logs from a mass of cloud and data sources and the … chance to learn these as you go. The Role You'll own and optimise enterprise-wide log onboarding into Microsoft Sentinel – deploying standard and custom connectors, Function Apps, and parsers to build tailored SIEM solutions that drive real-world threat detection and response. Log ingestion at scale across More ❯

IT support role Proven experience in a 2nd/3rd line support role within a Windows-based environment. Strong knowledge of Microsoft 365, Azure AD, and Windows Server environments. Solid networking knowledge (TCP/IP, DNS, DHCP, VPNs, VLANs, firewalls). Experience with IT security principles, practices, and … Desirable but Not Essential: Experience working in a Law firm and/or with legal software Experience working with Microsoft Defender for Endpoint, Sentinel, or other SIEM tools. Exposure to compliance standards such as ISO 27001, Cyber Essentials+, or NIST. Understanding of identity and access management, conditional access More ❯

IT support role Proven experience in a 2nd/3rd line support role within a Windows-based environment. Strong knowledge of Microsoft 365, Azure AD, and Windows Server environments. Solid networking knowledge (TCP/IP, DNS, DHCP, VPNs, VLANs, firewalls). Experience with IT security principles, practices, and … Desirable but Not Essential: Experience working in a Law firm and/or with legal software Experience working with Microsoft Defender for Endpoint, Sentinel, or other SIEM tools. Exposure to compliance standards such as ISO 27001, Cyber Essentials+, or NIST. Understanding of identity and access management, conditional access More ❯

IT support role Proven experience in a 2nd/3rd line support role within a Windows-based environment. Strong knowledge of Microsoft 365, Azure AD, and Windows Server environments. Solid networking knowledge (TCP/IP, DNS, DHCP, VPNs, VLANs, firewalls). Experience with IT security principles, practices, and … Desirable but Not Essential: Experience working in a Law firm and/or with legal software Experience working with Microsoft Defender for Endpoint, Sentinel, or other SIEM tools. Exposure to compliance standards such as ISO 27001, Cyber Essentials+, or NIST. Understanding of identity and access management, conditional access More ❯

Configure and manage Microsoft Defender for Office 365/Cloud/Endpoint/Servers, Purview (Information Protection, Data Loss Prevention), and Microsoft Entra (Azure AD) security features. Experience of integrating with MS Sentinel and working with existing SOC teams to adopt Sentinel technology capability. More ❯

and share experience with colleagues. Provide recommendations for SecOps processes and automation Key Skills Security products (email filtering, AV, firewalls, WAFs, MS Defender, Sentinel) Enterprise Systems (email, PKI, AD, Azure, M365, Intune) Azure cloud Analytical and troubleshooting skills are essential, including problem solving from More ❯

a Senior Lead Purview Consultant to join the team and support their clients in implementing and enabling Microsoft Purview and related M365 and Azure Technologies, including data governance, compliance, and risk management solutions. The Role You will work with various clients across different industries and collaborate with internal … team of consultants. Key tasks include evaluating and implementing Microsoft Purview technologies for data classification, protection, retention, and compliance across Microsoft 365 and Azure, deploying features like eDiscovery, Information Protection, Data Loss Prevention, Communication Compliance, and Information Barriers, and advising on insider risk management and regulatory compliance. You … security strategies with business goals. The Person The ideal candidate will have hands-on experience delivering Microsoft Purview solutions in Microsoft 365 and Azure environments, with a thorough understanding of features such as Sensitivity Labels, encryption, eDiscovery, Communication Compliance, Data Lifecycle Management, and Records Management. You should be More ❯

Consultant to join the team and support and advise their clients on the implementation and enablement of Microsoft Purview and associated M365 and Azure Technologies, including end-to-end data governance, compliance, and risk management solutions. The Role You will work across a variety of clients in different … members to ensure alignment of security strategies with business goals. The Person: Hands-on experience delivering Microsoft Purview solutions across Microsoft 365 and Azure environments. A thorough understanding of Purview features, including: Information Protection (Sensitivity Labels, encryption, etc.) eDiscovery & Communication Compliance Data Lifecycle Management & Records Management Ability to More ❯

data in support of them Own completion and accuracy of all SecOps-related product delivery evidence Key Skills Security products (M365 Defender stack, Sentinel/SIEM, email filtering (including authentication protocols), AV, firewalls, WAFs, Defender for Cloud) Security Testing (SAST, DAST, vulnerability scanning, configuration compliance scanning) Virtualisation platforms … and operating systems, including Hyper-V and Windows Server. Enterprise Systems (Azure, M365, Intune, email, PKI, AD, GP, SCCM) Application platforms (MS Dynamics, Power Platform) Cloud platforms (Azure) Detection engineering (Log Ingestion, Rule Development, Tuning and Maintenance, detection testing) Security monitoring service delivery and improvement Vulnerability More ❯

Threat Detection – Specializing in SIEM tools to identify anomalies across cloud and data center environments, while developing and maintaining security monitoring during the Azure transition. Incident Response & Threat Hunting – Assisting in containment, eradication, and recovery of incidents, proactively hunting for threats, and mitigating operational risks. Risk & Threat Management … of IT domains like OS, databases, networks, or applications It’s a bonus if you have: Qualifications in Cyber Security Knowledge of Microsoft Sentinel and Microsoft Azure (including certifications such as AZ-900, SC-900, SC-200 or AZ-500) If this role is of interest More ❯

PIM, PAM, PowerShell Automation | FinTech Software Company 4 month contract Our client is looking for a Microsoft Identity Engineer with deep expertise in Azure RBAC and PIM/PAM automation to shape and enforce enterprise-wide access governance. You’ll work at the core of a highly collaborative … to make secure access seamless. Key Skills: Microsoft PIM Microsoft PAM Terraform or Bicep or ARM + PowerShell What You’ll Be Doing: Azure RBAC Design & Automation: architect least privilege access models, automate role assignments and eliminate over-permissioning PIM Integration & Oversight: build out policy-driven controls using … Azure AD PIM to manage escalated privileges PAM Workflows: leverage Microsoft Defender for Identity and other tools to secure critical access paths Lifecycle Automation: own the user journey: provisioning, deprovisioning, access reviews, and role audits via Entra and Logic Apps. Monitoring & Alerting: surface insights through Sentinel More ❯

PIM, PAM, PowerShell Automation | FinTech Software Company 4 month contract Our client is looking for a Microsoft Identity Engineer with deep expertise in Azure RBAC and PIM/PAM automation to shape and enforce enterprise-wide access governance. You’ll work at the core of a highly collaborative … to make secure access seamless. Key Skills: Microsoft PIM Microsoft PAM Terraform or Bicep or ARM + PowerShell What You’ll Be Doing: Azure RBAC Design & Automation: architect least privilege access models, automate role assignments and eliminate over-permissioning PIM Integration & Oversight: build out policy-driven controls using … Azure AD PIM to manage escalated privileges PAM Workflows: leverage Microsoft Defender for Identity and other tools to secure critical access paths Lifecycle Automation: own the user journey: provisioning, deprovisioning, access reviews, and role audits via Entra and Logic Apps. Monitoring & Alerting: surface insights through Sentinel More ❯

PIM, PAM, PowerShell Automation | FinTech Software Company 4 month contract Our client is looking for a Microsoft Identity Engineer with deep expertise in Azure RBAC and PIM/PAM automation to shape and enforce enterprise-wide access governance. You’ll work at the core of a highly collaborative … to make secure access seamless. Key Skills: Microsoft PIM Microsoft PAM Terraform or Bicep or ARM + PowerShell What You’ll Be Doing: Azure RBAC Design & Automation: architect least privilege access models, automate role assignments and eliminate over-permissioning PIM Integration & Oversight: build out policy-driven controls using … Azure AD PIM to manage escalated privileges PAM Workflows: leverage Microsoft Defender for Identity and other tools to secure critical access paths Lifecycle Automation: own the user journey: provisioning, deprovisioning, access reviews, and role audits via Entra and Logic Apps. Monitoring & Alerting: surface insights through Sentinel More ❯

effectiveness. Requirements Qualifications: Proven experience in a senior development leadership role, preferably within the cybersecurity industry. Familiarity with Microsoft technologies, including Defender products, Sentinel, and Purview. Experience with Agile methodologies and tools such as Azure DevOps, Jira, and Aha!. Excellent leadership, communication, and interpersonal skills. More ❯

At least 4 years of experience in a SOC environment handling high-profile incidents. Strong knowledge of Microsoft Security tools such as Defender, Sentinel, KQL, etc. Experience with hybrid-cloud SOC environments, preferably Azure and AWS. Proven projects demonstrating SecOps Engineering and Automation skills. If you More ❯

with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Ability to articulate specific projects that you have built More ❯

At least 4 years of experience working in a SOC environment, handling high-profile incidents. Strong knowledge of the Microsoft Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments, preferably Azure/AWS. Ability to articulate specific projects you have built, developed More ❯