26 to 50 of 106 Azure Sentinel Jobs

Position Overview We are seeking a Senior Azure Security Engineer to join our UK-based team. This role will be responsible for implementing and maintaining robust security solutions across our Azure cloud infrastructure. You'll play a key role in ensuring compliance, hardening environments, and leveraging Microsoft's security tools to protect our systems and data. … Key Responsibilities Security Architecture & Implementation Implement and maintain secure Azure architectures in line with best practices Develop and support cloud security policies and technical standards Conduct security assessments, risk analysis, and contribute to security roadmaps Collaborate with teams to integrate security into CI/CD and cloud-native applications Microsoft Security Stack Configure and manage Microsoft Defender for … Cloud, Defender for Endpoint, and Sentinel Deploy Microsoft Purview for compliance and information protection Manage Microsoft 365 Defender (Office 365, Identity, Endpoint) Support Conditional Access, Entra ID, and Identity Governance setups Implement Data Loss Prevention (DLP) and sensitivity labels Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed More ❯

of Cyber Security. Required Skills Experience with EDR and Anti-Virus/Malware management such as SentinelOne, CrowdStrike and Defender. Demonstrated ability working with IT System Administration of Azure, Defender (ATP), M365 and Windows. Experience with Identity Access and Management (IDAM) solutions. CyberArk and ENTRA ID Familiarity with conditional/remote access toolsets. ENTRA, DUO SSO & MFA gateway. … Proficient with Data loss prevention tools experience, such as MS Purview Compliance Manager and Tessian Security monitoring, SIEM tooling such as Exabeam, QRadar, Splunk and Sentinel. Experience with Azure (security centre) and M365 cloud infrastructure and configuration and on-premises Active Directory Experience in Cloud email security gateway services, Microsoft Exchange Online, Mimecast and DMARC. Experience developing policies … procedures related to cryptography, key-vault certificate management and HSM. Azure and Thales. Familiarity with Hyper-V, VMware and Citrix. Practical understanding of SCCM or enterprise patch management tools Experience with Qualys or enterprise Vulnerability Management and Compliance toolsets. More ❯

minor releases become available. Responsible for the administration of all aspects of virtual server infrastructure. Administer and manage the organization's storage infrastructure, including on-premises storage arrays, Azure storage, and AWS S3. Responsible for all the technology infrastructure supporting Tier 3 services including but not limited to Ivanti, SCCM, Intune, SysTrack, Absolute Software, Active Directory, ADFS, Microsoft … Connect, IIS Web and Radius Systems Administration, Applications Single Sign On (SSO) using Active Directory authentication and other integrations. Manage and Support Gallery's Microsoft Office 365 and Azure Cloud Environments. Maintain Password Management System like CyberArk. Maintain Servers and Endpoint Point Patching Platforms (WSUS and Ivanti) Coordinate and/or participate in meetings with supported customers. Research … wide certificate management and PKI 3+ years of administration experience with Microsoft Enterprise Environment 3+ years of administration experience with Office 365 3+ years of experience managing with Microsoft Azure 3+ years of experience with Microsoft Hyper-V and VMware Technologies 5+ experience with Windows Server 2016, 2019, 20222 3+ years of experience with Enterprise SAN and NAS More ❯

an initial 6-month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure … approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. … Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and More ❯

Devonshire Hayes are seeking a highly skilled Azure Cloud Administrator to join our clients dynamic IT team. Based in London, this hybrid role offers the opportunity to work on a range of cloud-based projects, ensuring the smooth operation, performance, and security of our Microsoft Azure environment. You’ll play a key role in managing cloud … infrastructure, supporting deployment processes, and ensuring compliance with operational and security standards across the business. Proven experience as an Azure Administrator or in a similar cloud operations role. In-depth knowledge of Microsoft Azure services (e.g., Azure VMs, App Services, Azure Storage, VNets). Experience with Azure Active Directory, Conditional … Strong skills in PowerShell or other scripting languages for automation. Solid understanding of networking concepts (DNS, firewalls, VPN, ExpressRoute). Experience with monitoring and logging tools such as Azure Monitor, Log Analytics, and Sentinel. Excellent problem-solving, communication, and documentation skills. More ❯

experience. 4+ years in a cybersecurity role, preferably within an MSP or fast-paced environment. Strong hands-on experience with SIEM, EDR, VPNs, firewalls, and cloud platforms (AWS, Azure, GCP). Expertise in Microsoft Sentinel, Cisco Splunk or Palo Alto QRadar, and KQL. Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR More ❯

hands-on developing and maintaining our security operations tooling. Key Responsibilities: Architect, implement, and maintain advanced security configurations across the Microsoft Defender suite (Cloud, Endpoint and Identity), Microsoft Sentinel, Purview and Azure infrastructure (including RBAC, PIM, NSGs and identity protections). Lead security incident detection, investigation, and response activities alongside the SOC. Lead the implementation and … tuning of Microsoft Sentinel: build KQL queries, implement custom rules, conduct threat hunting, workbooks, design and automate playbooks using Logic Apps. Experience collaborating with development, operations and infrastructure teams in a security context. Experience securing cloud platforms and applications using tooling such as CASB, CSPM or similar. Harden Windows and Linux systems, enforce secure configurations (e.g., CIS benchmarks … delivery of new tooling or processes and ensure that new technologies are sufficiently secure and protected. Skills & Experiences: Previoushands on experience in cybersecurity roles Strong experience with Microsoft Sentinel: rule creation, threat hunting, workbooks, and automation. In-depth knowledge of network security, including principles such as zero trust and networksecurity tooling such as Netskope. In-depth knowledge of More ❯

overseeing the organisation's IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support … fully cloud-based infrastructure, ensuring a secure, scalable, and efficient migration and removal of technical debt. Manage, enhance, and optimise the organisation's use of Microsoft 365 and Azure cloud platforms, enabling the migration legacy solutions to native cloud services, ensuring high availability and performance. Oversee cloud-based SaaS, PaaS, and IaaS solutions, ensuring seamless integration with business … and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel More ❯

flows within a network. * Advanced knowledge of Windows and Linux operating environments, including standard commands, file systems, and user authentication mechanisms. * Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms. * Able to demonstrate proficient knowledge using Kusto Query Language (KQL More ❯

flows within a network. * Advanced knowledge of Windows and Linux operating environments, including standard commands, file systems, and user authentication mechanisms. * Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms. * Able to demonstrate proficient knowledge using Kusto Query Language (KQL More ❯

e.g., CISSP, CCSP, CCNA, SABSA). Desirable Skills: Experience with cloud, on-prem, SaaS, PaaS, and IaaS environments. Security incident response background. Coding/scripting ability. Familiarity with Azure Sentinel. Benefits: £5,400 car allowance 25 days annual leave with the option to purchase additional days Private medical insurance Life assurance Pension scheme Generous flexible benefits fund Salary More ❯

risk, prioritise remediation, and strengthen their overall cloud security posture. You'll work with a variety of leading cloud security platforms including Orca Security, Microsoft Defender XDR, Microsoft Sentinel, Microsoft Purview and the broader Microsoft 365 security suite. In this role, you will support the design and implementation of cloud-native security solutions, perform in-depth security assessments … roadmaps, aligning with regulatory, compliance, or cloud governance frameworks (e.g. NIST, ISO, CIS). Conduct gap analysis and risk assessments aligned to cloud security frameworks (e.g., CIS Benchmarks, Azure Well-Architected Framework). Support pre-sales efforts, including solution scoping, client demos, and bid/tender responses where required. While this is a hybrid role, there may be … Security Stack, including Defender for Endpoint, Defender for Identity, Defender for Office 365, Microsoft Defender for Cloud Apps, and Microsoft Defender for Cloud. Hands-on experience with Microsoft Azure security controls and services; equivalent exposure to GCP or AWS is also acceptable. Proficiency with CSPM, CNAPP, or vulnerability management platforms. Sound understanding of cloud security design principles, including More ❯

overseeing the organisation's IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support … and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel … and API security for robust protection across all assets Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, Microsoft AD (Entra), Server and SQL experience, O365 administration and design Global Software Patching and More ❯

overseeing the organisation's IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support … and data. • Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. • Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). • Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel … and API security for robust protection across all assets • Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience • Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, • Microsoft AD (Entra), Server and SQL experience, • O365 administration and design • Global Software Patching and More ❯

years’ experience within a similar support based role, ideally in the managed services space across the Microsoft technology stack Experience in Entra ID, Intune, and Azure. Knowledge of Sentinel, and Microsoft Defender. Experience working within a SOC environment would be advantageous. Demonstrable experience in forming collaborative working relationships with customers and other internal stakeholders. Confidence in effectively communicating More ❯

deal shaping. • Develop and maintain long-term strategic client relationships. • Design, implement, and integrate security, incident, and event management solutions into Security Operations, with a particular interest in Azure Sentinel. • Understand threat modelling, risk, and how to mitigate risks concerning applications from internal and external threat actors. • Have a deep understanding of incident response processes and techniques for More ❯

and booking couriers for client equipment is desirable. Broad technical knowledge should include solutions such as ConnectWise, RMM systems (Asio/Addigy), Mac & Windows OS, Active Directory/Azure Active Directory, Virtual machines (Oracle & Hyper-V), hardware build/deployment, printers/peripherals, cloud services (Microsoft 365, Google Workspace, Dropbox), Microsoft MDM Software (Intune, Addigy, Jamf, Apple Business More ❯

response pipelines, integrate advanced threat intelligence, and lead the use of behavioural analytics and attack simulation across our environment. Your technical breadth will span modern cloud-native stacks (Azure, GCP), serverless and containerised architectures, and a wide range of security tooling including DLP, SIEM, CNAPP, and XDR, and tools such as Wiz, Darktrace, Microsoft Defender, Intune, and Sentinel. More ❯

your sleeves in the Microsoft 365 admin center and briefing executives on compliance strategy. Key Responsibilities IT Operations & Microsoft Platform Own end to end administration of Microsoft 365 (Azure AD, Exchange Online, SharePoint, Teams, Intune) Design and maintain LAN, WAN, and wireless networks using Zero Trust principles Automate routine tasks through PowerShell, Graph API, and Intune configuration profiles … Apps, Intune MTD) Conduct threat modeling, vulnerability management, and purple team style validation to drive continuous improvement Maintain SIEM/SOAR detections and integrate log sources into Microsoft Sentinel Compliance & Audit Readiness Lead readiness and evidence collection for ISO 27001, NIST 800171, and CMMC Level 2 assessments Map security controls to customer and regulatory requirements, develop POA&Ms … execution Required Qualifications US Citizen Bachelor's degree in Computer Science, Cybersecurity, or related field and 8+ years of progressive IT experience 5+ years administering Microsoft 365 and Azure AD at scale, including conditional access and MFA Preferred Qualifications Master's degree or relevant certifications such as CISSP, CISM, CCSP, Microsoft Certified: Cybersecurity Architect Expert, or CMMC Pro More ❯

overseeing the organisation's IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support … and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel … and API security for robust protection across all assets Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, Microsoft AD (Entra), Server and SQL experience, O365 administration and design Global Software Patching and More ❯

customers, conducting occasional site visits, and helping optimise IT systems and services. This is an exciting opportunity to work with a broad tech stack including Windows, Microsoft 365, Azure, networking tools, and security platforms. To thrive as an IT Support Advisor , you must have hands-on experience with Windows 10/11, Active Directory, Microsoft 365, Intune, and More ❯

Responsibilities Monitor and analyze user activity for anomalous behavior using SIEM, EDR, and UEBA tools. Develop and tune detection rules and alerts in platforms like Splunk and Microsoft Sentinel to identify insider threats and privileged account misuse. Lead or support investigations into insider threat incidents, collaborating with HR, legal, and SOC teams to ensure due process and policy … or higher. 5+ years of experience in cybersecurity operations, with at least 2 years focused on insider threat detection or behavioral analytics. Proficiency with SIEM tools (e.g., Splunk, Sentinel), EDR platforms (e.g., CrowdStrike, SentinelOne), and DLP solutions. Experience with insider threat tools (e.g., Code42, DTEX, UEBA platforms). Familiarity with NIST, DFARS, CMMC, and insider threat program frameworks … functionally with HR, legal, and compliance teams. One or more relevant certifications: CISSP, GCED, GCIH, GCFA, CEH, CySA+, or equivalent. Preferred Qualifications Experience with cloud security monitoring in Azure and O365 environments. Experience integrating behavioral analytics into SIEM workflows. Experience conducting tabletop exercises and developing IR playbooks. Master's degree in Cybersecurity, Information Security, or related field. More ❯

CrowdStrike and others. Familiarity with DNS/proxy security tools like Cisco Umbrella. A solid understanding of the broader Microsoft Security stack, including Defender suite, Conditional Access, and Azure AD. Experience with incident response methodologies and digital forensics. A good understanding of networking fundamentals (TCP/IP, DNS, DHCP, etc.). Desirable Experience: Previous experience working for a … qualifications. Don't be discouraged if you don't hold all of them; your practical experience is just as important. Microsoft: SC-200 (Security Operations Analyst), AZ-500 (Azure Security Engineer), MS-500 or equivalent. Hands-On Technical: Blue Team Level 1/2 (BTL1/2) or GIAC certifications (e.g., GCED, GCIA, GCIH). Industry Standard: CompTIA More ❯

decisions. Additionally, you will provide solutions to problems for your immediate team and across multiple teams. Key Requirements: Detailed Hands On SIEM support including policy updates (KQL/Sentinel) Hands On cyber escalations from L1 support Deep dive into data analysis and tools Incident Responder during a MIM Ensuring all SOC processes and docs are current SC Clearance … required Key Skills: SOC SIEM MS Azure Sentinel Cyber Incident/Threat Security Breach Operations More ❯

decisions. Additionally, you will provide solutions to problems for your immediate team and across multiple teams. Key Requirements: Detailed Hands On SIEM support including policy updates (KQL/Sentinel) Hands On cyber escalations from L1 support Deep dive into data analysis and tools Incident Responder during a MIM Ensuring all SOC processes and docs are current SC Clearance … required Key Skills: SOC SIEM MS Azure Sentinel Cyber Incident/Threat Security Breach Operations More ❯