26 to 50 of 57 Azure Sentinel Jobs

prem LDAP applications, and outdated protocols like Kerberos and NTLM. Automation: Streamline operations by automating identity tasks using PowerShell, Microsoft Graph API, and Azure CLI. Governance & Compliance: Ensure all platforms meet hardening standards and assist with audit readiness for frameworks such as ISO 27001, GDPR, or PCI DSS. … What We’re Looking For Essential Experience: Expertise in Microsoft Identity: Proven track record with Azure Entra ID, Active Directory, and managing hybrid-to-cloud transitions. Device Management: Strong proficiency in Microsoft Intune/Endpoint Manager and modern Windows device transformation. Security Tooling: Hands-on experience deploying ...

structured support environment with familiarity with the ITIL framework Microsoft & Endpoint Technologies Expert knowledge of Windows 10/11 Microsoft 365, Intune, Autopilot, Azure AD Group Policy, Intune Configuration Policies, Microsoft Sentinel Server & Virtualisation Microsoft Windows Server 2012–2022 Virtualisation technologies, particularly Proxmox or Microsoft Hyper … Cloud Technologies Public cloud solutions with hands-on experience in Azure or AWS Solution implementation, migration, and ongoing support Networking & Security LAN/WLAN/WAN technologies Strong understanding of DNS, DHCP, VPNs, and security best practices Firewall exposure including Sophos, Cisco, Fortinet, and PF Sense Automation & Virtualisation ...

detection strategy and roadmap, aligning initiatives with KPIs and contractual requirements. Develop, optimise, and maintain high-fidelity detections using Splunk , Microsoft Sentinel , KQL , SPL , and Python for automation and Detection as Code. Work closely with cloud platforms ( AWS and Azure ) to enhance detection capabilities in hybrid … with day-to-day responsibilities. Essential Skills and Experience: SC clearance required to start; DV sponsorship available. Proven expertise with Splunk and Microsoft Sentinel SIEM platforms. Strong programming skills in Python , with experience developing automation and Detection as Code pipelines. Proficiency in KQL and SPL for creating efficient ...

members. Conduct security design reviews and apply security principles across high and low-level designs. Engineer and maintain cloud-native security solutions in Azure and AWS (GCP desirable). Develop Infrastructure-as-Code using Terraform, Ansible, or similar tools. Build and maintain security integrations between SIEM, SOAR … What Were Looking For 5+ years in Security Engineering, Security Automation, or DevSecOps. Strong experience with security tooling, automation, and cloud security in Azure/AWS. Hands-on with IaC tools (Terraform, Ansible) and securing CI/CD pipelines. Knowledge of SIEM platforms (e.g., Splunk, Sentinel ...

experience: GlobalProtect, site-to-site IPsec VPNs, SSL decryption operations Advanced Threat Prevention tuning, WildFire analysis, DNS Security Cloud security/networking exposure: Azure/AWS/GCP, cloud-native firewalls, transit networking VM-Series deployments, Terraform/automation exposure SIEM integration experience: Splunk/Sentinel ...

goal: delivering an exceptional customer experience with speed and precision. Responsibilities: Be fast: Monitor alerts and events using tools like Microsoft Sentinel and PRTG, spotting issues before they become problems. Stay curious : Triage security and infrastructure incidents, follow playbooks, and keep things moving to resolution. Go further … DHCP). Windows/Linux systems or firewalls. Security tools (SIEM, antivirus, vulnerability scanners). Scripting (PowerShell, Python). Cloud platforms (Azure, AWS). Entry requirements: an A-Level in ICT OR an International Baccalaureate at Level 3 ICT OR an A-Level 3 apprenticeship in a similar ...

incident response, and threat hunting across a Microsoft-centric SIEM and XDR environment. This is a hands-on L3 role focused on Microsoft Sentinel and the Microsoft Defender XDR suite, acting as a technical authority within the SOC and supporting the ongoing expansion of security tooling and controls. … Responsibilities: Engineering and optimising Microsoft Sentinel, including log onboarding, connectors, parsers, and data normalisation Monitoring and optimising Sentinel and Defender licensing and ingestion costs Designing automated response and SOAR workflows using Sentinel playbooks Leading complex incident investigations and advanced threat response Proactive threat hunting ...

infrastructure Define and apply security architecture patterns , including Zero Trust and defence-in-depth strategies Lead security design for cloud-based solutions (AWS, Azure, and/or GCP) Architect and govern identity and access management (IAM) , including authentication, authorisation, and privileged access Design secure network architectures covering encryption … enterprise systems Solid understanding of Zero Trust , defence-in-depth, and modern security patterns Hands-on experience designing security for cloud platforms (AWS, Azure, and/or GCP) Deep knowledge of IAM , authentication, authorisation, and privileged access management Strong background in network security , encryption, and key management Experience ...

infrastructure. Solid understanding of security architecture patterns, zero trust principles, and Defence-in-depth strategies Experience designing security solutions in cloud environments (AWS, Azure, and/or GCP) Strong knowledge of identity and access management (IAM), authentication, authorization, and privileged access Experience with network security, encryption, key management … threat modelling Experience designing for security resilience. Desirable Skills: Hands-on experience with cloud security services and tooling (e.g. AWS Security Hub, Azure Defender, Sentinel) Experience with container and Kubernetes security (image scanning, runtime protection, policy enforcement) Exposure to regulated or highly secure enterprise environments Security ...

Intelligence Analyst, Threat Intelligence Analyst or Threat Hunting role Strong understanding of cyber threats, malware and adversary TTPs Hands-on experience with Microsoft Sentinel and Defender XDR Good working knowledge of KQL (Kusto Query Language) Strong understanding of the MITRE ATT&CK framework Experience investigating IOCs and real … Intelligence Analyst , not rigid office attendance. Keywords Cyber Threat Intelligence Analyst, Threat Intelligence Analyst, Cyber Threat Analyst, Threat Hunter, Cyber Security Analyst, Microsoft Sentinel, Defender XDR, KQL, Kusto Query Language, SIEM, EDR, MITRE ATT&CK, Threat Hunting, Cyber Threat Intelligence, Malware Analysis, IOCs, OSINT, SOC, Incident Response, Blue ...

focussed projects to improve security across Network, Windows Desktop/Server Environments, wider Wintel environment inc virtualised server environments VMWare, intune, O365/Azure in conjunction with the relevant teams. Review vulnerabilities in the environment and suggest, plan and implement remediation. Requirements: Technically minded security engineer Proficiency with … security tools such as SIEM, PAM, web filtering, email filtering (Mimecast), IDS/IPS, antivirus, endpoint protection, MS Sentinel, vulnerability assessment tools ie Tenable. Experience in SentinelOne MDR Experience in working with a third party to a managed SOC provision An understanding of the importance of Identity Threat ...

ability to prioritise under pressure. Aware of how security decisions impact operations and customer outcomes. Familiarity with ISO 27001, Cyber Essentials, Microsoft Defender, Azure, Fortinet, Mimecast, Sentinel or similar platforms. SIEM: Microsoft Sentinel, CrowdStrike Next-Gen SIEM Ability to meet vetting requirements (BS7858). ...

vulnerability management and coordinate remediation activities. Provide technical security guidance to IT teams and project stakeholders. Profile Experience with Microsoft security stacks (Defender, Sentinel, Entra ID, etc.). Experience in networking, firewalls, routers/switches, and cloud infrastructure (Azure preferred). Experience with vulnerability management ...

vulnerability management and coordinate remediation activities. Provide technical security guidance to IT teams and project stakeholders. Profile Experience with Microsoft security stacks (Defender, Sentinel, Entra ID, etc.). Experience in networking, firewalls, routers/switches, and cloud infrastructure (Azure preferred). Experience with vulnerability management ...

solutions that achieve the firm's long term objectives. Your skills and experience Experience of the Microsoft Technology Stack and leading Cloud Technologies (Azure, AWS, etc). Experience in full time Cyber Security or Security Vulnerability Management operational role. CompTIA Security+, GIAC Security Essentials, similar qualifications, or equivalent … line support, server or network administration/configuration or application testing or development. Experience with security tooling, i.e. MS Defender and Sentinel, Secure Web Gateway, vulnerability scanners, Intrusion Detection Systems (IDS), firewalls, web and email filtering, endpoint protection, and mobile device management (MDM). Growth mentality with excellent ...

operations (SIEM/XDR, EDR, email security, network security, cloud security). Handsonexpertisewith identity & access management and Microsoft ecosystem (e.g., Entra ID/Azure AD, Defender XDR, Sentinel, Intune). Familiarity withGRC, risk assessments, control design/testing, and audit readiness. Incident response leadership (playbooks, forensics ...

email security, network security, cloud security). Hands on expertise with identity & access management and Microsoft ecosystem (e.g., Entra ID/Azure AD, Defender XDR, Sentinel, Intune). Familiarity with GRC, risk assessments, control design/testing, and audit readiness. Incident response leadership (playbooks, forensics coordination ...

three senior Microsoft consulting roles. Help shape enterprise-grade solutions for our clients and accelerate your career in a supportive, innovative environment. Enterprise Azure Consultant Apply here Take ownership of large-scale Azure deployments—designing landing zones, governance structures, security models, networking, infrastructure-as-code (Bicep …/Terraform), and DevOps pipelines. You'll guide migrations, manage hybrid setup, control Azure costs, integrate Defender, Sentinel, and shape secure, compliant solutions. The role demands 5+ years’ Azure experience in enterprise environments, certifications (AZ‐305, AZ‐500, etc.), strong automation, DevOps, security ...

looking for a hands-on DevSecOps Engineer to take ownership of application and cloud security across a modern, Azure-first product environment. This is a product-focused security role, sitting at the intersection of development, DevOps and security, helping teams understand why vulnerabilities exist … understanding vulnerabilities at a low level and advising development teams on remediation Work closely with DevOps to ensure secure configuration and deployment within Azure (including Azure Front Door, WAF, Defender for Cloud, Sentinel) Support and interpret results from ITHC (UK Government-standard) penetration tests ...

looking for a hands-on DevSecOps Engineer to take ownership of application and cloud security across a modern, Azure-first product environment. This is a product-focused security role, sitting at the intersection of development, DevOps and security, helping teams understand why vulnerabilities exist … understanding vulnerabilities at a low level and advising development teams on remediation Work closely with DevOps to ensure secure configuration and deployment within Azure (including Azure Front Door, WAF, Defender for Cloud, Sentinel) Support and interpret results from ITHC (UK Government-standard) penetration tests ...

follow agreed processes. Keep up to date with threats and recommend improvements. What you will bring: ? Clear understanding of Information Security fundamentals Sentinel OR Splunk experience. Familiarity with security monitoring/protective technologies. Good project-management skills; able to juggle multiple priorities. Analytical and systematic problem-solving approach … deadlines and collaborate in a busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experienceespecially Sentinel or Splunk. If you are interested in this role but not sure if your skills ...

follow agreed processes. Keep up to date with threats and recommend improvements. What you will bring: Clear understanding of Information Security fundamentals Sentinel OR Splunk experience. Familiarity with security monitoring/protective technologies. Good project-management skills; able to juggle multiple priorities. Analytical and systematic problem-solving approach … deadlines and collaborate in a busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experience—especially Sentinel or Splunk. If you are interested in this role but not sure if your ...

mentor junior engineers. The ideal candidate will have previous experience within a similar role and possess deep expertise in the Microsoft ecosystem, specifically Azure, Intune, and Entra ID, alongside strong networking skills involving Cisco WAN/LAN and VPNs. You should be proficient in managing VMware/vSphere … Datto backups, Nimble SAN storage, and security tools like Microsoft Sentinel, Defender, and Qualys. This is a fantastic opportunity to take ownership of a diverse tech stack and drive the strategic direction of a company's security and network infrastructure. The Role: Resolve complex Tier 3 issues ...

workshops. Must-Have Certifications (at least 2): SC-100 (Cybersecurity Architect) SC-200 (Security Operations Analyst) SC-400 (Information Protection Administrator) AZ-500 (Azure Security Engineer) Key Skills: Microsoft Defender Suite (Endpoint, Identity, Cloud Apps) Microsoft Sentinel (analytics rules, SOAR playbooks) Microsoft Purview DSPM (classification, labels ...

essential, but Cyber Strategy is a must. Key Technical skills for the Head of Cyber Security role should include: Microsoft Defender and Sentinel Tessian (Proofpoint) Mimecast MS E5 Security Suite Strong analytical skills with the ability to efficiently troubleshoot and diagnose technical faults Good working knowledge … systems Competent knowledge of iOS and Android operating systems Good understanding of virtual server infrastructure (VMWare) Good working knowledge of on premise and Azure Active Directory Awareness of Group Policy Management and Azure Microsoft Endpoint Manager Good understanding of Citrix XenApp/XenDesktop/ ...