14 of 14 Remote/Hybrid Kusto Query Language Jobs

Hunting role Strong understanding of cyber threats, malware and adversary TTPs Hands-on experience with Microsoft Sentinel and Defender XDR Good working knowledge of KQL (Kusto Query Language) Strong understanding of the MITRE ATT&CK framework Experience investigating IOCs and real-world security incidents Excellent written … rigid office attendance. Keywords Cyber Threat Intelligence Analyst, Threat Intelligence Analyst, Cyber Threat Analyst, Threat Hunter, Cyber Security Analyst, Microsoft Sentinel, Defender XDR, KQL, Kusto Query Language, SIEM, EDR, MITRE ATT&CK, Threat Hunting, Cyber Threat Intelligence, Malware Analysis, IOCs, OSINT, SOC, Incident Response, Blue Team, Microsoft ...

analysis and scripting languages (e.g., PowerShell, Python). Strong Security Orchestration, Automation and Response (SOAR) knowledge. Experienced in Kusto Query Language (KQL) Team leadership experience with great collaboration and stakeholder management skills Candidates must have a valid and live SC clearance for this role. Should this position ...

security certifications such as SC-900, SC-200, SC-300, SC-400, MS-500, AZ-500 or similar experience. Recognised security certifications. Proficient with Kusto Query Language . Knowledge (or ideally consulted on development) of secure hardware/software design and development practises. Understanding of vulnerability management ...

supporting C#/.NET Core/MVC web applications with SQL Server backends and Azure Blob Storage. Advanced Azure diagnostics (Application Insights, Log Analytics, Kusto Query Language). Proficient in SQL for investigation and remediation. Scripting and automation skills in PowerShell and/or C#. Understanding … Blob Storage, scaling strategies. Experience in capacity planning, SLOs, and error budget management Azure Monitor, Application Insights, Log Analytics, Azure Data Explorer (KQL), Azure Functions, Logic Apps, PowerShell, C#, SQL Server Management Studio, Azure Storage Explorer, Power BI (for reporting). Desirable Your Personal Skills and Attributes Exceptional problem-solving ...

effectively. Documentation & Compliance Improve and maintain accurate system documentation for configuration, troubleshooting, and best practices. Ideal Background Proficiency in SQL Server, T-SQL, and KQL (Azure Application Insights), including writing queries and stored procedures from scratch. Experience troubleshooting application logs, Windows Event Viewer, and system errors. Hands-on experience with ...

Functions Networking App Insights Data Factory Databricks Proven experience with Azure DevOps (ADO) Solid understanding of Terraform HELM Flux Powershell/Azure CLI KQL Advantageous: Healthcare or Government related industry experience Understanding of JIRA and Confluence Understanding or experience with TCAF Qualifications: Microsoft certification(s) in Azure, such ...

deploy Microsoft Purview (DLP, classification, compliance) Implement the Defender suite (Endpoint, Identity, Cloud Apps, Office 365) Build and tune Sentinel SIEM: analytics rules, playbooks, KQL, automation Design Zero Trust controls via Entra ID: Conditional Access, PIM, RBAC Lead client-facing workshops and contribute to presales and security strategy Create LLDs ...

Data Factory (pipelines, orchestration) o Data Engineering (Lakehouse, notebooks, Apache Spark) o Data Warehouse (SQL endpoints, schemas, MPP performance tuning) o Real-Time Analytics (KQL databases, event ingestion) o Manage and enhance OneLake architecture, delta lake tables, security policies, and data governance within Fabric. o Build scalable, reusable data assets ...

Data Factory (pipelines, orchestration) o Data Engineering (Lakehouse, notebooks, Apache Spark) o Data Warehouse (SQL endpoints, schemas, MPP performance tuning) o Real-Time Analytics (KQL databases, event ingestion) o Manage and enhance OneLake architecture, delta lake tables, security policies, and data governance within Fabric. o Build scalable, reusable data assets ...

Warwick. We respond as one global team, US & UK, comprising of analysts, senior analysts, principal analysts, & managers. This affords you a team you can query, learn, and rely upon. Additionally, we have procedures ingrained within our technology to assist your investigations from triaging to containment. The UK position … packet capture analysis, EDR, IDS/IPS, SIEM and AV. Knowledge of Windows/Linux/Mac Host internals. Knowledge of Cloud, Azure, KQL, Scripting, Microsoft Defender. Knowledge of network protocols and windows enterprise domains. Knowledge of MITRE ATT&CK tactics and techniques. Knowledge of Splunk ES8. Knowledge ...

multiple domains - identity and access, network, system, data, application, cloud - and multiple product types. Proficiency in data analysis and Scripting languages (eg, PowerShell, Python, KQL). Strong Security Orchestration, Automation and Response (SOAR) knowledge. Team leadership experience with great collaboration and stakeholder management skills SC Clearance would be advantageous ...

tenant-wide scoping, and differential targeting by region/legal entity. Automate via PowerShell/Graph and instrument telemetry/alerting (e.g., Sentinel/KQL, compliance portals). Define controls, evidence artefacts, and reporting for internal audit and regulatory assurance. Create runbooks for policy changes, exceptions, break-glass procedures ...

detection strategy and roadmap, aligning initiatives with KPIs and contractual requirements. Develop, optimise, and maintain high-fidelity detections using Splunk , Microsoft Sentinel , KQL , SPL , and Python for automation and Detection as Code. Work closely with cloud platforms ( AWS and Azure ) to enhance detection capabilities in hybrid environments. Monitor networks … expertise with Splunk and Microsoft Sentinel SIEM platforms. Strong programming skills in Python , with experience developing automation and Detection as Code pipelines. Proficiency in KQL and SPL for creating efficient, high-fidelity detections. Solid understanding of security detection methodologies, threat intelligence, and cloud security environments. Strong communication and stakeholder management ...

Detection Engineer - SIEM, KQL, Sentinel Client is looking for a Detection Engineer to join their security team. Will be creating and improving detetions. - KQL exp is a must (Sentinel/Log Analytics/Microsoft Defender) - Translate threat intelligence into actionable detection logic - Windows, MacOS or Linux operating systems exp London ...