24 of 24 Remote/Hybrid Azure Sentinel Jobs

will evaluate application-generated logs, develop threat detection strategies, and report findings to the Information Security team. This role requires deep expertise in Microsoft Azure security tools, log analytics, and automation to enhance the customer’s application anomaly detection capabilities. Key Responsibilities: Develop detailed threat models tailored … large portfolio of applications with varying threat categories. Analyze logs generated by applications using Azure Log Analytics and Azure Sentinel to identify anomalies and potential threats. Design, build, and maintain KQL queries to extract and correlate security-relevant data from logs. Implement automated alerting ...

Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/XDR, SIEM (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management. Experience with security audits, compliance programmes, and regulated industry requirements. Excellent communication and influencing skills, with confidence engaging ...

achieve. The Microsoft support team is integral to this approach and our success. To provide 3rd line support managing cloud infrastructure in Azure across design, implements and manages cloud solutions that span both on-premise and Azure environments, ensuring seamless integration and efficient resource utilization, often … using tools like Azure Hybrid Benefit for Bytes Microsoft Cloud customers. This will be filled by someone with proven 3rd-line support experience and hands-on experience of the Microsoft Hybrid Infrastructure, acting as an escalation point for incidents relating to their Azure cloud services ...

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – UK Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like … within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build ...

modern security architectures, solving complex technical challenges, and acting as a trusted technical partner. Technology Environment Microsoft Security Stack: Microsoft Defender XDR Microsoft Sentinel Microsoft Entra ID Microsoft Intune Microsoft Defender for Cloud Experience with alternative modern security platforms such as SentinelOne or CrowdStrike is advantageous. Cloud Platforms … Microsoft Azure (required) Exposure to AWS or GCP (desirable) Platforms & Infrastructure: Active Directory/Entra hybrid identity Windows Server and Linux Networking, VPNs, firewalls, endpoint management Tooling & Automation: KQL PowerShell API integrations Automation tooling Key Responsibilities Technical Delivery Lead technical discussions with customers, guiding architecture, design decisions ...

will positively shape our future. What are the day-to-day tasks? Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead the design and deployment of conditional access, Defender for Cloud, Purview DLP, Azure … related services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container workflows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. ...

support based role, ideally in the managed services space across the Microsoft technology stack Experience in Entra ID, Intune, and Azure. Knowledge of Sentinel, and Microsoft Defender. Experience working within a SOC environment would be advantageous. Demonstrable experience in forming collaborative working relationships with customers and other internal ...

from you.Experience2-4 years' experience in cloud security, pre-sales engineering, technical consulting, or security operations.Exposure to at least one major cloud provider (Azure, AWS, or GCP), with a willingness to broaden your expertise.Understanding of hybrid and on-premise security concepts.Awareness of key frameworks such … PlatformsExperience with some of the following is helpful (not all required):Microsoft Defender for Cloud, AWS Security Hub, GuardDuty, GCP Security Command Center.Microsoft Sentinel, AWS CloudTrail, Config, KMS, GCP Cloud Logging.CSPM: Prisma Cloud, Wiz, Orca, Lacework, CloudGuard.CIEM: SailPoint, Saviynt, Veza.Identity & Access ManagementAzure AD/Entra ...

objectives. Providing support to police forces for the onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional … development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creating and maintaining technical design documentation. Working with the PDS design team and wider ...

London are looking for a seasoned Information Security Lead to be the authority across all Information Security and Cloud Infrastructure; ensuring Azure, Microsoft 365, and SaaS platforms are secure, resilient, and compliant. The role combines hands-on technical security expertise with risk management, governance, and assurance, supporting business … enablement, rather than day-to-day service desk operations. The ideal candidate will have strong technicals skills across the following: Microsoft Entra ID (Azure AD): Conditional Access, MFA, Passwordless authentication, Identity Protection, PIM, Phishing resistant MFA configurations Zero Trust architecture and least-privilege access models Identity governance, access ...

validate fixes, and ensure closure in line with risk appetite. Improve security controls across IAM, network security, system hardening and vulnerability management (primarily Azure-focused). Embed security into Infrastructure‐as‐Code and CI/CD: work within Terraform-managed environments and automated pipelines so security is built … experience Security operations experience in a SaaS, cloud or regulated technology environment. Experience triaging and responding to security alerts using SIEM tooling (Microsoft Sentinel advantageous). Strong grounding in Azure security: identity & access management, network security, hardening and vulnerability management. Experience with vulnerability assessments/penetration ...

validate fixes, and ensure closure in line with risk appetite. Improve security controls across IAM, network security, system hardening and vulnerability management (primarily Azure-focused). Embed security into Infrastructure‐as‐Code and CI/CD: work within Terraform-managed environments and automated pipelines so security is built … experience Security operations experience in a SaaS, cloud or regulated technology environment. Experience triaging and responding to security alerts using SIEM tooling (Microsoft Sentinel advantageous). Strong grounding in Azure security: identity & access management, network security, hardening and vulnerability management. Experience with vulnerability assessments/penetration ...

Cyber Security Engineer Tech Focus: Azure/Microsoft 365/Purview/Defender/Sentinel Rate: Circa £500/day Inside IR35 Location: Fully Remote Duration: 6 Months This is a fantastic opportunity for a Cyber Security Engineer to join a small but growing Cloud/… Azure team within a global organisation in the construction consultancy sector. The business has now fully moved into Azure Cloud and is looking to strengthen and mature its cyber security posture. You’ll be joining a highly skilled and well‐established security and cloud team that ...

London are looking for a seasoned Information Security Lead to be the authority across all Information Security and Cloud Infrastructure; ensuring Azure, Microsoft 365, and SaaS platforms are secure, resilient, and compliant. The role combines hands-on technical security expertise with risk management, governance, and assurance, supporting business … enablement, rather than day-to-day service desk operations. The ideal candidate will have strong technicals skills across the following: Microsoft Entra ID (Azure AD): Conditional Access, MFA, Passwordless authentication, Identity Protection, PIM, Phishing resistant MFA configurations Zero Trust architecture and least-privilege access models Identity governance, access ...

experience: GlobalProtect, site-to-site IPsec VPNs, SSL decryption operations Advanced Threat Prevention tuning, WildFire analysis, DNS Security Cloud security/networking exposure: Azure/AWS/GCP, cloud-native firewalls, transit networking VM-Series deployments, Terraform/automation exposure SIEM integration experience: Splunk/Sentinel ...

government organisation to recruit a Principal Cyber Security Engineer on a 2-year FTC. The role requires someone with a strong background in Azure infrastructure, as well as AWS experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls … Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft ...

Strong leadership and team management capability * Expertise in Incident Response and Vulnerability Management processes * Hands-on experience with Microsoft security technologies (Defender suite, Sentinel) * Experience developing and maintaining operational security procedures and documentation * Alert tuning and optimisation to reduce false positives * Ability to define, measure, and report … automation techniques (SOAR tools, scripting) * Understanding of threat intelligence and proactive threat hunting * Strong communication and stakeholder engagement skills DESIRABLE * Familiarity with Azure and AWS security operations * Understanding of regulatory and compliance requirements in operational security * Certifications such as CISSP, CISM or equivalent TO BE CONSIDERED: Please either ...

pure new business role, ideal for someone with a passion for solving security challenges through Microsoft-aligned services such as Entra ID (Azure AD) , Microsoft Defender , Microsoft Sentinel , and broader IAM and managed security solutions . You’ll be part of a high-growth business that … with CISOs, Heads of Security, and IT leaders on identity protection , zero trust , threat detection , and compliance Own complex sales cycles around Microsoft Sentinel , Defender suite , Entra ID , and managed IAM Collaborate closely with technical consultants and presales to build tailored, value-led proposals Maintain a healthy, well ...

provide architecture and solution governance. Key Responsibilities (Technology) Architect and deliver end-to-end infrastructure solutions across public, private, and hybrid cloud environments (Azure, AWS, GCP, VMware, OpenStack). Lead cloud transformation initiatives, including IT-as-a-Service strategies, workload migrations, and application modernization. Serve as a trusted … controls. Drive DevOps and automation practices using tools like Terraform, Ansible, PowerShell, and cloud management platforms. Manage and optimize virtual desktop infrastructure (Citrix, Azure Virtual Desktop) and enterprise collaboration tools (M365, O365, Intune). Lead technical workshops, training sessions, and stakeholder engagements to ensure successful adoption ...

leadership/SOC management roles Strong hands-on knowledge of SIEM, SOAR and EDR technologies Experience with tools such as LogRhythm, Splunk, Microsoft Sentinel, Securonix Understanding of incident response frameworks and SOC operating models Experience working in enterprise or managed SOC environments Strong stakeholder communication and incident management … capabilities Desirable certifications: CISSP or CISM GIAC certifications (GCIH/GCIA/GCFA/GCTI/GMON) CEH or CompTIA CySA+ Azure security certifications (AZ-500/SC-200) This role is ideal for a senior SOC professional who enjoys leading security operations, improving detection capabilities, and working ...

will: • Lead and schedule the SOC Engineering team across onboarding and live service activity • Own technical delivery during customer onboarding and transition • Oversee Sentinel connector deployment, Defender integration, rule tuning and SOAR playbooks • Ensure structured service handover into SOC operations with clear documentation • Act as escalation point … logic, automation and enrichment capability • Drive engineering standards, reporting clarity and workload discipline • Coach and develop junior engineers • Maintain technical authority across Microsoft Sentinel, Defender suite, Entra ID and Azure security architecture What Success Looks Like • Onboarding delivered on time with validated integrations • Clean handover into ...

security operations Key Skills & Experience 1–2 years’ experience in a SOC Analyst or security monitoring role Experience working with SIEM platforms (Microsoft Sentinel beneficial) Understanding of common cyber threats and attacker techniques Exposure to Microsoft security technologies such as Defender or Azure security tools Strong ...

expanding its cyber security team and is looking for a Senior Cyber Security Engineer to help strengthen security across a hybrid infrastructure and Azure environment. This role sits within the prevent and protect pillar of the cyber function , focusing on implementing security controls and improving the organisation … into platforms, projects and cloud services across the business. What you will be doing Improving security across a hybrid infrastructure environment that includes Azure and on premise systemsDesigning and implementing security controls across identity, endpoint and infrastructure platformsSupporting infrastructure and technology projects by providing practical security guidanceStrengthening Azure ...

Cisco Nexus Switching, ASA/Firepower Fortinet (ideally certified), Check Point (CCSE/CCSM), Palo Alto Load balancing technologies AWS and/or Azure VMware (ESXi, vSAN) Windows & Linux Servers Network monitoring tools SIEM tooling (Defender/Sentinel) ITIL exposure (incident/change management) Server rack ...