20 of 20 Azure Sentinel Jobs in the South East

fixed-term contract paying £70,000 , offering full remote flexibility across the UK. The Opportunity You'll play a key role in stabilising and strengthening Microsoft 365 and Azure environments through a period of change. The role blends technical delivery with stakeholder engagement - you'll be as comfortable securing systems as you are guiding … users through new policies and controls. What You'll Be Doing Delivering and maintaining security across Microsoft 365 and Azure . Building and tuning detections in Microsoft Sentinel . Managing patching, malware protection, and vulnerability remediation . Supporting Cyber Essentials Plus and ongoing compliance programmes. Documenting changes, maintaining governance, and ensuring minimal disruption. Mentoring a service … desk engineer stepping into cyber security. What You'll Bring Strong experience with Microsoft 365 security, Defender, Intune, and Azure AD/Entra ID . Working knowledge of Azure Sentinel (SIEM) and KQL. Solid understanding of patch management and endpoint security. Previous involvement in Cyber Essentials Plus or ISO27001 accreditation. Clear communication skills, able More ❯

Analyst Are you passionate about building secure cloud environments and driving proactive security solutions? We re looking for a highly skilled Information Security Analyst with strong expertise in Azure cloud security, Microsoft Sentinel, and Tenable to join a growing security team. As an Information Security Analyst, you will play a key role in safeguarding cloud environments. … organisation. This is a hands-on role suited to someone who enjoys solving complex security challenges and driving continuous improvement. Key Responsibilities Lead the design and implementation of Azure security best practices, policies, and controls. Manage and optimise Microsoft Sentinel SIEM, including rule creation, use-case development, automation, and threat hunting. Oversee vulnerability management activities using … Continuously assess cloud environments for misconfigurations, threats, and compliance gaps. Prepare security reports, dashboards, and metrics for leadership and stakeholders. Skills & Experience Required Strong hands-on experience with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable More ❯

Analyst Are you passionate about building secure cloud environments and driving proactive security solutions? We’re looking for a highly skilled Information Security Analyst with strong expertise in Azure cloud security, Microsoft Sentinel, and Tenable to join a growing security team. As an Information Security Analyst, you will play a key role in safeguarding cloud environments. … organisation. This is a hands-on role suited to someone who enjoys solving complex security challenges and driving continuous improvement. Key Responsibilities Lead the design and implementation of Azure security best practices, policies, and controls. Manage and optimise Microsoft Sentinel SIEM, including rule creation, use-case development, automation, and threat hunting. Oversee vulnerability management activities using … Continuously assess cloud environments for misconfigurations, threats, and compliance gaps. Prepare security reports, dashboards, and metrics for leadership and stakeholders. Skills & Experience Required Strong hands-on experience with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable More ❯

Analyst Are you passionate about building secure cloud environments and driving proactive security solutions? We’re looking for a highly skilled Information Security Analyst with strong expertise in Azure cloud security, Microsoft Sentinel, and Tenable to join a growing security team. As an Information Security Analyst, you will play a key role in safeguarding cloud environments. … organisation. This is a hands-on role suited to someone who enjoys solving complex security challenges and driving continuous improvement. Key Responsibilities Lead the design and implementation of Azure security best practices, policies, and controls. Manage and optimise Microsoft Sentinel SIEM, including rule creation, use-case development, automation, and threat hunting. Oversee vulnerability management activities using … Continuously assess cloud environments for misconfigurations, threats, and compliance gaps. Prepare security reports, dashboards, and metrics for leadership and stakeholders. Skills & Experience Required Strong hands-on experience with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable More ❯

Security Analyst Are you passionate about building secure cloud environments and driving proactive security solutions? Were looking for a highly skilled Information Security Analyst with strong expertise in Azure cloud security, Microsoft Sentinel, and Tenable to join a growing security team. As an Information Security Analyst, you will play a key role in safeguarding cloud environments. … organisation. This is a hands-on role suited to someone who enjoys solving complex security challenges and driving continuous improvement. Key Responsibilities Lead the design and implementation of Azure security best practices, policies, and controls. Manage and optimise Microsoft Sentinel SIEM, including rule creation, use-case development, automation, and threat hunting. Oversee vulnerability management activities using … Continuously assess cloud environments for misconfigurations, threats, and compliance gaps. Prepare security reports, dashboards, and metrics for leadership and stakeholders. Skills & Experience Required Strong hands-on experience with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable More ❯

Engineering. This is a hybrid role at London office with a requirement to be in the office based on the business need. The Role: Agentic AI for Security & Sentinel Advanced Capabilities Lead the adoption and integration of Agentic AI for Security to enable autonomous threat detection, adaptive response, and continuous security posture improvement. Architect and optimise Microsoft Sentinel for SIEM, UEBA, and threat intelligence integration, leveraging Microsoft Sentinel Model Context Protocol (MCP) for advanced context-aware analytics and automation. Develop and maintain security analytics and data pipelines within Sentinel Data Lake to support large-scale threat detection, incident response, and threat hunting, while optimizing cost and enabling Agentic AI-driven security operations. … Integrate and automate security workflows using Microsoft Sentinel Graph for unified threat intelligence, incident correlation, and automated response. Microsoft Cloud Security Architecture & Strategy Design and implement Microsoft Cloud Security Architectures for Azure, AWS, OCI, GCP and hybrid cloud environments. Ensure Defender XDR and Defender for Cloud are optimised for advanced threat detection and response. Develop enterprise More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

direct reports Essential Experience & Knowledge Experience in Security Operations, Incident Response, or similar role Strong understanding of networking, Windows/Linux, and cybersecurity fundamentals Experience with SIEM (e.g., Sentinel, Splunk), EDR tools, and vulnerability platforms Understanding of security frameworks (ISO 27001, NIST, CIS) Working knowledge of Microsoft InTune Familiarity with GDPR and data protection requirements Desirable Certifications such … as Security+, CEH, GIAC Experience with cloud security (Azure/AWS/GCP) Exposure to AI/ML tools in security contexts Experience with MDM platforms and mobile security Skills & Attributes Strong analytical and problem-solving skills Clear and confident communication skills Ability to work independently and collaborate effectively Detail-focused, adaptable, and proactive Motivated by learning and More ❯

direct reports Essential Experience & Knowledge Experience in Security Operations, Incident Response, or similar role Strong understanding of networking, Windows/Linux, and cybersecurity fundamentals Experience with SIEM (e.g., Sentinel, Splunk), EDR tools, and vulnerability platforms Understanding of security frameworks (ISO 27001, NIST, CIS) Working knowledge of Microsoft InTune Familiarity with GDPR and data protection requirements Desirable Certifications such … as Security+, CEH, GIAC Experience with cloud security (Azure/AWS/GCP) Exposure to AI/ML tools in security contexts Experience with MDM platforms and mobile security Skills & Attributes Strong analytical and problem-solving skills Clear and confident communication skills Ability to work independently and collaborate effectively Detail-focused, adaptable, and proactive Motivated by learning and More ❯

Engineer - SIEM, KQL- sought by investment bank based in London. *Inside IR35 - 3 days a week on-site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues … team exercises. Please apply within for further details - Alex Reeder Harvey Nash 3+ years in a Security Engineer, SOC Analyst, or similar role Hands-on experience with Microsoft Sentinel and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity with security frameworks (MITRE More ❯

Active Directory, Hyper-V and high availability failover clustering Microsoft Data Protection Manager PowerShell scripting and automation All round Microsoft Cloud Operations engineer Cloud Services, IaaS, PaaS, Microsoft Azure, including Site recovery (ASR) and M365, Exchange Online, OneDrive, Teams Azure networking (private endpoints, Azure firewalls, VPNs, IP Groups etc) Operations systems, Windows Desktop, Windows … Server and Linux Monitoring/Alerting/log Analytics, Sentinel Logic Apps API Management gateways Azure Application Proxies You must be eligible for security clearance living in the UK as a British Citizen. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy More ❯

Strong analytical mindset with excellent attention to detail. Solid understanding of adversary techniques (e.g., MITRE ATT&CK) and common attack patterns. Hands-on experience using SIEM tools (e.g., Sentinel or equivalent platforms). Familiarity with EDR/XDR solutions such as Defender for Endpoint, CrowdStrike, SentinelOne or similar. Good grounding in core networking and security concepts (TCP/… IP, firewalls, IDS/IPS). Practical knowledge of Windows, Linux and cloud environments (Azure, AWS or GCP). Strong written and verbal communication skills, especially for technical reporting. Ability to work independently and collaboratively in a dynamic environment. Desirable Skills: Experience in scripting or automation (Python, PowerShell, etc.). Industry certifications such as Security+, SC-200, GIAC More ❯

BPSS/SC Test Engineer – Azure Platform | £400 Outside IR35 | 3 Months Initial | Remote Opus are recruiting for a Platform Test Engineer to support a key government client with testing and assurance of a new Azure Platform deployed via Terraform and Git workflows. This role focuses on validating platform components against design, security, and compliance standards … and can be completed on a fully remote basis. A minimum of current and active BPSS Clearance is required for this position , SC clearance is desirable. Key Skills: Azure platform testing (networking, identity, governance, security) Terraform validation and Git-based workflows Automation with PowerShell, Azure CLI, Python (pytest/Pester) Azure Policy, RBAC, CAF … governance Logging and observability: Log Analytics, Sentinel Tools: Checkov, TFLint, PSRule for Azure BPSS Required , SC Clearance Desirable Responsibilities: Design and execute manual/automated tests for Azure infrastructure Validate networking, identity, policy, and security configurations Build automated test scripts and integrate with Git workflows Maintain test plans, evidence packs, and assurance artefacts Support More ❯

A Council in London are seeking an Azure CloudOps Engineer to design, deploy, and maintain highly resilient, secure, and cost-optimised cloud infrastructure and services on Microsoft Azure. This role is responsible for establishing and adhering to strict UK Government Digital Service (GDS) reliability standards and implementing rigorous FinOps governance policies. The engineer must drive operational excellence through … product and delivery teams. Incident and Problem Management Leadership: Leading the technical response and resolution for high-priority cloud incidents (P1 and P2). The role demands integrating Azure Monitor and Azure Service Health alerts directly with the Council's ITSM platform to automatically generate tickets and drive continuous operational improvements aimed at minimising Mean Time … as-Code (IaC) Development: Developing, testing, and maintaining reusable IaC templates (specifically Bicep or Terraform) for standardising infrastructure deployment. This includes creating robust PowerShell and Python Runbooks within Azure Automation for routine configuration management, scheduled maintenance, and automated incident remediation actions. Security Operations (SecOps) and Threat Response: Implementing proactive threat detection and automated security response capabilities. This involves More ❯

on a fully remote basis and is determined as Inside IR35, offering £500–£525 per day. Key Skills : Microsoft Defender XDR: Endpoint, Identity, Office 365, Cloud Apps Microsoft Sentinel: KQL, playbook development, SIEM optimisation Privileged Identity Management (PIM) and change control workflows Advanced threat detection, incident response, and threat hunting Log collection via Azure Monitoring Agent … and Firewall Management Centre Responsibilities: Configure and fine-tune Microsoft Defender XDR in line with approved designs Participate in Microsoft FastTrack engagements Integrate Defender XDR with Sentinel SIEM for enhanced detection and response Develop Kusto queries and automation playbooks Support PoC setup for Microsoft Copilot for Security Connect syslogs from on-prem servers and firewalls to Sentinel More ❯

Security Analyst Are you passionate about building secure cloud environments and driving proactive security solutions? Were looking for a highly skilled Information Security Analyst with strong expertise in Azure cloud security, Microsoft Sentinel, and Tenable to join a growing security team click apply for full job details More ❯

We are looking to recruit an experienced Microsoft Cyber Security Analyst who has a wealth of practical experience with Sentinel, Defender and SOAR Automation with a good understanding of applying Cyber Security tools in a Microsoft based Cloud infrastructure. In this role you will be a key member of the team responsible for securing our clients digital infrastructure. … As the Microsoft Cyber Security Analyst you will responsible for the implementation, configuration and optimisation of Microsoft Sentinel, Microsoft Defender and SOAR Playbook automation and deployment. You will also need to be proficient in the use of KQL. In this role you will be the Microsoft Cyber Security SME and will be key to creating a secure Azure More ❯

We are looking to recruit an experienced Microsoft Cyber Security Analyst who has a wealth of practical experience with Sentinel, Defender and SOAR Automation with a good understanding of applying Cyber Security tools in a Microsoft based Cloud infrastructure. In this role you will be a key member of the team responsible for securing our clients digital infrastructure. … As the Microsoft Cyber Security Analyst you will responsible for the implementation, configuration and optimisation of Microsoft Sentinel, Microsoft Defender and SOAR Playbook automation and deployment. You will also need to be proficient in the use of KQL. In this role you will be the Microsoft Cyber Security SME and will be key to creating a secure Azure More ❯

We are looking to recruit an experienced Microsoft Cyber Security Analyst who has a wealth of practical experience with Sentinel, Defender and SOAR Automation with a good understanding of applying Cyber Security tools in a Microsoft based Cloud infrastructure. In this role you will be a key member of the team responsible for securing our clients digital infrastructure. … As the Microsoft Cyber Security Analyst you will responsible for the implementation, configuration and optimisation of Microsoft Sentinel, Microsoft Defender and SOAR Playbook automation and deployment. You will also need to be proficient in the use of KQL. In this role you will be the Microsoft Cyber Security SME and will be key to creating a secure Azure More ❯