51 to 75 of 75 Azure Sentinel Jobs

of adversary TTPs and frameworks such as MITRE ATT&CK. Hands-on skills in log analysis, anomaly detection, and incident remediation. Experience working in traditional IT and cloud (Azure and/or AWS) environments. Strong communication skills with the ability to translate technical threats into business terms. Tools & Technologies - You will work with a modern SOC technology stack … including: SIEM: Microsoft Sentinel EDR/XDR: Microsoft Defender for Endpoint Threat Intel: Recorded Future Network Analysis: Wireshark/tcpdump SOAR & Automation: Palo Alto Cortex XSOAR, ServiceNow SecOps Vulnerability Management: Tenable Nessus/Tenable.io Other nice to have tools: Shodan, Censys, BloodHound, Metasploit, Cobalt Strike, MITRE ATT&CK Navigator Cloud Security (advantageous): AWS GuardDuty, Security Hub, CloudTrail, Detective More ❯

incident response lifecycle (preparation, identification, containment, eradication, recovery, lessons learned). Proven experience managing and responding to complex security incidents. Hands-on experience with SIEM platforms (e.g., Splunk, Sentinel, QRadar). Ability to query data, analyze logs, and understand how data sources feed into threat detection. Strong knowledge of EDR tools (e.g., CrowdStrike, SentinelOne, Carbon Black) and their … understanding of network protocols, firewalls, intrusion detection/prevention systems (IDS/IPS), and network traffic analysis. Familiarity with security principles and services in major cloud environments (AWS, Azure, GCP). Ability to consume and apply threat intelligence to proactively improve security controls and detection mechanisms. Experience with MacOS desired. Experience with web3 environments desired. Must be able More ❯

such as Windows Server, Active Directory, Group Policy and Microsoft 365. The successful candidate will then work with the latest Microsoft services, developing expertise in areas such as: Azure Cloud & Virtual Desktops Microsoft Sentinel Microsoft Defender for Cloud Privileged Identity Management Microsoft Defender for Endpoint This position involves operating in a fast-paced MSP environment to … security of customers’ cloud workloads. Key Responsibilities: Provide high-quality support for incidents and service requests raised through our Service Desk, working with technologies such as Active Directory, Azure Active Directory, Group Policy, Exchange Online, Windows Server, and Remote Desktop Services. Respond to monitoring alerts for Microsoft Azure IaaS/PaaS/SaaS services, network connectivity … and Microsoft 365 services to proactively address potential issues. Investigate and resolve security alerts for Microsoft 365 users and Azure workloads, addressing concerns like user account security, suspicious activity, antivirus alerts, and Endpoint Detection and Response (EDR) notifications. Review, install, and test security and application updates, leveraging automation to maintain and improve customer environments. Ensure the operational integrity More ❯

Configure, monitor and maintain network infrastructure and security. Administer servers, virtualisation and user hardware. Manage software deployments and compliance processes, including ERP systems. Monitor and maintain Microsoft 365, Azure and identity services. Oversee Helpdesk operations, SLA compliance and incident resolution. Lead IT projects and implement process improvements. Maintain IT documentation and ensure governance standards are met. Drive security … are looking for: Minimum 5 years’ IT experience, including service delivery. Strong knowledge of ITIL practices, compliance frameworks and regulated environments. Proficient in Windows Server, Active Directory/Azure AD, GPO, Hyper-V and virtualisation. Experience with Microsoft 365 suite, SharePoint, Teams, Intune, Power Platform and cloud services. Security aware, with experience in Microsoft Security Suite, Defender, Sentinel More ❯

must meet 8570 requirements. Required Qualifications include: 5 years of experience performing threat hunts & incident response activities for cloud-based and non-cloud-based environments, such as: Microsoft Azure, Microsoft O365, Microsoft Active Directory, and Zscaler 5 years of experience performing hypothesis-based threat hunt & incident response utilizing Splunk Enterprise Security. 5 years of experience collecting and analyzing … data from compromised systems using EDR agents (e.g. CrowdStrike) and custom scripts (e.g. Sysmon & Auditd) 5 years of experience with the following threat hunting tools: Microsoft Sentinel for threat hunting within Microsoft Azure; Tenable Nessus and SYN/ACK for vulnerability management; NetScout for analyzing network traffic flow; SPUR.us enrichment of addresses Mandiant Threat intel feeds … through the AOUSC ITSM ticket (e.g., HEAT or Service Now), for threat hunt support. Threat hunt targets include cloud-based and non-cloud-based applications such as: Microsoft Azure, Microsoft O365, Microsoft Active Directory, and Cloud Access Security Brokers (i.e., Zscaler). Review and analyze risk-based Security information and event management (SIEM) alerts when developing hunt hypotheses. More ❯

designing and implementing SOC platforms (e.g., SIEM, SOAR, EDR). Deep understanding of security operations workflows, threat intelligence, and incident response. Hands-on experience with tools like Splunk, Sentinel, QRadar, or similar. Ability to engage with both technical and non-technical stakeholders. Familiarity with cloud environments (Azure, AWS, GCP) and hybrid architectures. Bonus Points For: Certifications More ❯

designing and implementing SOC platforms (e.g., SIEM, SOAR, EDR). Deep understanding of security operations workflows, threat intelligence, and incident response. Hands-on experience with tools like Splunk, Sentinel, QRadar, or similar. Ability to engage with both technical and non-technical stakeholders. Familiarity with cloud environments (Azure, AWS, GCP) and hybrid architectures. Bonus Points For: Certifications More ❯

designing and implementing SOC platforms (e.g., SIEM, SOAR, EDR). Deep understanding of security operations workflows, threat intelligence, and incident response. Hands-on experience with tools like Splunk, Sentinel, QRadar, or similar. Ability to engage with both technical and non-technical stakeholders. Familiarity with cloud environments (Azure, AWS, GCP) and hybrid architectures. Bonus Points For: Certifications More ❯

designing and implementing SOC platforms (e.g., SIEM, SOAR, EDR). Deep understanding of security operations workflows, threat intelligence, and incident response. Hands-on experience with tools like Splunk, Sentinel, QRadar, or similar. Ability to engage with both technical and non-technical stakeholders. Familiarity with cloud environments (Azure, AWS, GCP) and hybrid architectures. Bonus Points For: Certifications More ❯

designing and implementing SOC platforms (e.g., SIEM, SOAR, EDR). Deep understanding of security operations workflows, threat intelligence, and incident response. Hands-on experience with tools like Splunk, Sentinel, QRadar, or similar. Ability to engage with both technical and non-technical stakeholders. Familiarity with cloud environments (Azure, AWS, GCP) and hybrid architectures. Bonus Points For: Certifications More ❯

Cyber Security, and Information Security. Oversee security controls, risk management, and compliance across cloud and on-prem environments. Manage threat detection, monitoring, and incident response using Microsoft Defender, Sentinel, and Entra ID. Lead identity & access management (IAM) and ensure secure authentication processes. Support M&A security assessments and integrations, ensuring due diligence. Communicate cyber risk insights to senior … leadership and drive security culture. Skills & Qualifications Required: 5+ years in cyber security leadership with a strong technical security background. Expertise in Microsoft & Azure security environments (cloud, hybrid, on-prem). Hands-on experience with SIEM, EDR, and XDR solutions for security monitoring. Certifications preferred: CISSP, CISM, AZ-500, SC-200, SC-100. Strong knowledge of ISO More ❯

Cyber Security, and Information Security. Oversee security controls, risk management, and compliance across cloud and on-prem environments. Manage threat detection, monitoring, and incident response using Microsoft Defender, Sentinel, and Entra ID. Lead identity & access management (IAM) and ensure secure authentication processes. Support M&A security assessments and integrations, ensuring due diligence. Communicate cyber risk insights to senior … leadership and drive security culture. Skills & Qualifications Required: 5+ years in cyber security leadership with a strong technical security background. Expertise in Microsoft & Azure security environments (cloud, hybrid, on-prem). Hands-on experience with SIEM, EDR, and XDR solutions for security monitoring. Certifications preferred: CISSP, CISM, AZ-500, SC-200, SC-100. Strong knowledge of ISO More ❯

Cyber Security, and Information Security. Oversee security controls, risk management, and compliance across cloud and on-prem environments. Manage threat detection, monitoring, and incident response using Microsoft Defender, Sentinel, and Entra ID. Lead identity & access management (IAM) and ensure secure authentication processes. Support M&A security assessments and integrations, ensuring due diligence. Communicate cyber risk insights to senior … leadership and drive security culture. Skills & Qualifications Required: 5+ years in cyber security leadership with a strong technical security background. Expertise in Microsoft & Azure security environments (cloud, hybrid, on-prem). Hands-on experience with SIEM, EDR, and XDR solutions for security monitoring. Certifications preferred: CISSP, CISM, AZ-500, SC-200, SC-100. Strong knowledge of ISO More ❯

Cyber Security, and Information Security. Oversee security controls, risk management, and compliance across cloud and on-prem environments. Manage threat detection, monitoring, and incident response using Microsoft Defender, Sentinel, and Entra ID. Lead identity & access management (IAM) and ensure secure authentication processes. Support M&A security assessments and integrations, ensuring due diligence. Communicate cyber risk insights to senior … leadership and drive security culture. Skills & Qualifications Required: 5+ years in cyber security leadership with a strong technical security background. Expertise in Microsoft & Azure security environments (cloud, hybrid, on-prem). Hands-on experience with SIEM, EDR, and XDR solutions for security monitoring. Certifications preferred: CISSP, CISM, AZ-500, SC-200, SC-100. Strong knowledge of ISO More ❯

Cyber Security, and Information Security. Oversee security controls, risk management, and compliance across cloud and on-prem environments. Manage threat detection, monitoring, and incident response using Microsoft Defender, Sentinel, and Entra ID. Lead identity & access management (IAM) and ensure secure authentication processes. Support M&A security assessments and integrations, ensuring due diligence. Communicate cyber risk insights to senior … leadership and drive security culture. Skills & Qualifications Required: 5+ years in cyber security leadership with a strong technical security background. Expertise in Microsoft & Azure security environments (cloud, hybrid, on-prem). Hands-on experience with SIEM, EDR, and XDR solutions for security monitoring. Certifications preferred: CISSP, CISM, AZ-500, SC-200, SC-100. Strong knowledge of ISO More ❯

On the Job and Through Apprenticeship Training) Windows 10/11, Active Directory, and Microsoft 365 Networking fundamentals (DNS, DHCP, TCP/IP, Wi-Fi) Cloud and virtualisation (Azure, M365) Cybersecurity best practices Use of tools including NinjaOne, Zendesk, SentinelOne, and TeamViewer Customer service and professional communication skills Technical documentation and troubleshooting Level 3 Information Communications Technician qualification … months, delivered remotely with workshop days) Microsoft 365 and Azure Fundamentals certifications (MS-900, AZ-900) Training Information Communications Technician Level 3 Apprenticeship Standard You will also receive full training and support from the Just IT Apprenticeship Team to increase your skills Potential full-time position for the right candidate after completion of the apprenticeship Apprenticeship Standard Information More ❯

in Incident Management, SecOps or IT Security Experience of reviewing SIEM alerts and responding to them appropriately Experience working through cyber investigations independently Proven experience of Splunk or Sentinel Worked with EDR systems such as Defender or Symantec Knowledge of KQL and SPL Threat Hunting experience Experience working with third-party suppliers and vendors?? Familiarity with enterprise security … controls and security best practices for Windows, Linux, and Mac systems or similar Experience of working with and securing Azure & AWZ cloud workloads Ideally have experience in: AZ-500 or comparable level of knowledge CCSP/CCSK ideal but not essential CISSP ideal but not essential More ❯

clients to assess their security needs, design solutions, and implement Microsoft security technologies. You’ll be at the forefront of cutting-edge tools like Microsoft Defender XDR, Microsoft Sentinel, Microsoft Purview, and Azure security services, helping organisations stay resilient against ever-evolving cyber threats. This is an opportunity to use your expertise to deliver real-world … with Microsoft security and compliance solutions. 2+ years working as a consultant or in IT solution implementation/troubleshooting. Must have hands-on experience with Microsoft cloud technologies: Azure, Microsoft 365, Entra ID, Defender XDR, Purview, Sentinel, etc. Strong documentation, troubleshooting, and problem-solving skills. Excellent communication and interpersonal abilities. Experience delivering multiple projects on time More ❯

Significant experience working in a SOC environment (4 years minimum) , dealing with and responding to escalated and most high profile incidents. Experience working in hybrid-cloud SOC environments – Azure/AWS preferably. Practical experience both implementing and deploying DAC and IAC. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL More ❯

Relevant experience working as an effective Security Analyst • Strong understanding of mail filtering technologies • Strong understanding of Cloud infrastructure technologies, including encryption • Demonstrable experience of working with Microsoft Sentinel, Defender and Purview • Excellent understanding of security frameworks (NIST and Cyber Essentials) • Ability to lead and manage third party providers • Strong understanding of incident response processes and methodologies including … various devices, ensuring that all security protocols are effectively set up to protect against unauthorised access and potential threats • Proficient with SIEM, IDS/IPS, vulnerability scanners, and Azure security tools. • Experience of leading on technical vulnerability assessments and regular penetration testing of IT systems and processes to identify potential vulnerabilities and provide recommendations for risk mitigation • Experience More ❯

Relevant experience working as an effective Security Analyst • Strong understanding of mail filtering technologies • Strong understanding of Cloud infrastructure technologies, including encryption • Demonstrable experience of working with Microsoft Sentinel, Defender and Purview • Excellent understanding of security frameworks (NIST and Cyber Essentials) • Ability to lead and manage third party providers • Strong understanding of incident response processes and methodologies including … various devices, ensuring that all security protocols are effectively set up to protect against unauthorised access and potential threats • Proficient with SIEM, IDS/IPS, vulnerability scanners, and Azure security tools. • Experience of leading on technical vulnerability assessments and regular penetration testing of IT systems and processes to identify potential vulnerabilities and provide recommendations for risk mitigation • Experience More ❯

frequency TBC, but unlikely to be on a weekly basis). Key skills & experience needed: Familiarity with and experience of SOC operations and associated techniques and tools Microsoft Sentinel Defender EDR AWS, Azure, and cloud environments. Candidates must also have strong communication and stakeholder management skills If interested and available within the next 2 weeks, please More ❯

play a key role in delivering a modern IT strategy, with a focus on cloud technologies, system reliability, and security.The successful candidate will support and enhance a Microsoft Azure and Microsoft 365 environment, alongside enterprise security and backup systems. You'll be responsible for investigating and resolving complex technical issues, managing upgrades, ensuring disaster recovery readiness, and supporting … system integrations following acquisitions. Key Responsibilities: Provide infrastructure support across Microsoft Azure, Microsoft 365, backup, and security platforms. Diagnose and resolve technical incidents with minimal disruption. Maintain and optimise infrastructure through patching, monitoring, and performance tuning. Manage and support enterprise security solutions (Fortinet, Microsoft Defender, Sentinel, Mimecast, etc.). Contribute to disaster recovery planning and testing. … Document processes, incident resolutions, and technical procedures. Skills & Experience: Strong knowledge of Microsoft 365 (Intune, SharePoint, Exchange Online, Entra ID). Hands-on Microsoft Azure experience (VMs, networking, storage, AVD). Familiarity with Fortinet firewalls and related technologies. Experience with backup/disaster recovery tools (e.g., Veeam, Azure Backup). Proactive approach to system monitoring, automation More ❯

a key role in delivering a modern IT strategy, with a focus on cloud technologies, system reliability, and security. The successful candidate will support and enhance a Microsoft Azure and Microsoft 365 environment, alongside enterprise security and backup systems. You'll be responsible for investigating and resolving complex technical issues, managing upgrades, ensuring disaster recovery readiness, and supporting … system integrations following acquisitions. Key Responsibilities: Provide infrastructure support across Microsoft Azure, Microsoft 365, backup, and security platforms. Diagnose and resolve technical incidents with minimal disruption. Maintain and optimise infrastructure through patching, monitoring, and performance tuning. Manage and support enterprise security solutions (Fortinet, Microsoft Defender, Sentinel, Mimecast, etc.). Contribute to disaster recovery planning and testing. … Document processes, incident resolutions, and technical procedures. Skills & Experience: Strong knowledge of Microsoft 365 (Intune, SharePoint, Exchange Online, Entra ID). Hands-on Microsoft Azure experience (VMs, networking, storage, AVD). Familiarity with Fortinet firewalls and related technologies. Experience with backup/disaster recovery tools (e.g., Veeam, Azure Backup). Proactive approach to system monitoring, automation More ❯

Location: Home/Warwick Salary: £49,000 - £55,000 (+ on call worth approx. £4k - £6k, excellent benefits) Skills: Cisco, Networking projects, SD-WAN, VLAN, Static & Dynamic Routing, Azure vWAN We are looking to recruit a Network Engineer for a leading public sector organisation based in Warwick. This is an excellent opportunity for a Network Engineer with strong … service providers . Skills & Experience Required: Proven experience in network project delivery , not just day-to-day support. Strong knowledge of Cisco, SD-WAN, VLAN, Static & Dynamic Routing, Azure vWAN . Experience with Avaya telephony (desirable but not essential). Familiarity with AWS, Zscaler, SolarWinds, Sentinel . Ability to write and maintain technical documentation . Experience More ❯