19 of 19 Remote/Hybrid Kusto Query Language Jobs

CSOC Compile and present monthly SOC reporting, advising on security posture improvements Support client service reviews and articulate cyber risk in business-friendly language Conduct security assessments, including vulnerability testing and risk analysis Ensure high-quality incident resolution and consistent SOC performance Who you are: Youre an experienced cyber … responding to cyber security incidents Hands-on experience with SIEM, EDR, and email security tooling Experience working in a Microsoft XDR SOC Strong KQL (Kusto Query Language) skills Experience mentoring and supporting analysts at different levels Excellent written and verbal communication skills Strong analytical thinking, judgement ...

overview of customer industry and projects, access to cutting-edge technology etc.) Technical SME in Cybersecurity space Key responsibilities: (Up to 10, Avoid repetition) KQL: Expert Level Able to develop and maintain high-fidelity detection rules using Kusto Query Language Able to utilize KQL for detection engineering … Coordinate the end-to-end onboarding of log sources into Sentinel. Key skills/knowledge/experience: (Up to 10, Avoid repetition) Expert in KQL Technical SME for Sentinel set up Strong understanding of cloud and on premises logging (Windows, Linux, application, DB, identity). Experience onboarding data using ...

engineering activities on a rotational basis. Develop and tune detection rules to improve alert quality and reduce false positives. Write and optimise queries (e.g., KQL) across SIEM platforms. Collaboration & Support: Work closely with internal teams and third-party providers to investigate and resolve incidents. Support MSSP interactions and escalations where … Microsoft Sentinel). Experience with EDR/XDR tools (e.g., CrowdStrike). ServiceNow or similar ITSM/SecOps platforms. Ability to write and optimise KQL queries (essential). Knowledge of scripting/query languages (e.g., Falcon Query Language) is advantageous. Analytical Capability: Strong investigative and problem-solving ...

engineering activities on a rotational basis. Develop and tune detection rules to improve alert quality and reduce false positives. Write and optimise queries (e.g., KQL) across SIEM platforms. Collaboration & Support: Work closely with internal teams and third-party providers to investigate and resolve incidents. Support MSSP interactions and escalations where … Microsoft Sentinel). Experience with EDR/XDR tools (e.g., CrowdStrike). ServiceNow or similar ITSM/SecOps platforms. Ability to write and optimise KQL queries (essential). Knowledge of scripting/query languages (e.g., Falcon Query Language) is advantageous. Analytical Capability: Strong investigative and problem-solving ...

with the ability to explain technical issues to varied audiences Demonstrated commitment to continuous learning Desirable Skills Experience with scripting or automation (e.g. PowerShell, KQL, Python) Exposure to threat hunting or threat intelligence practices Experience mentoring or supporting junior colleagues Familiarity with vulnerability management or digital forensics What’s Offered ...

technical stakeholders. What youll bring: Deep SIEM expertise, building advanced detection logic, automation and complex queries in Splunk (SPL) and Microsoft Sentinel (KQL). A proven track record delivering complex detection engineering projects within enterprise or MSSP environments. Strong analytical skills, with the ability to break down sophisticated attacks into ...

technical stakeholders. What you’ll bring: Deep SIEM expertise, building advanced detection logic, automation and complex queries in Splunk (SPL) and Microsoft Sentinel (KQL). A proven track record delivering complex detection engineering projects within enterprise or MSSP environments. Strong analytical skills, with the ability to break down sophisticated attacks ...

areas: vulnerability analysis, security alert analysis, email threat analysis, incident response, ability to read and understand essential scripting and database languages (PowerShell, python, SQL, KQL, etc) desired Bachelor’s degree in computer science, information systems, cybersecurity or related field optional. GIAC, ISACA, CompTIA, and/or ISC2 technical certifications preferred ...

operating build & release automation and continuous integration and deployment, especially to Azure or to VMware VCF. Scripting and Programming languages in (Python, Bash, Powershell, KQL etc.,) Familiarity with infrastructure automation using tools like Ansible and Terraform. Experience of DevOps Practices, and working with Agile methodologies including SAFe. Unix & Windows system ...

alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query languages such as PowerShell, Python, SQL, or KQL (desirable). Excellent analytical and critical-thinking skills, with the ability to investigate issues independently and make sound judgments. Clear and professional written and verbal ...

alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query languages such as PowerShell, Python, SQL, or KQL (desirable). Excellent analytical and critical-thinking skills, with the ability to investigate issues independently and make sound judgments. Clear and professional written and verbal ...

maintain and tune the detection catalogue Build automated reporting dashboards using Microsoft Sentinel workbooks Support security initiatives including ISO 27001 activities and KQL-based tasks Ensure monitoring coverage across cloud platforms, SaaS apps, and internal systems Contribute to documentation of processes, tools, and detection logic What You’ll Bring Must … Have Skills & Experience: Previously worked as a Threat Detection Engineer or in a similar role. Strong proficiency in KQL and hands-on experience with Microsoft Sentinel Familiarity with Microsoft Defender tools (Endpoint & O365) Exposure to Azure cloud logging and Kubernetes environments Knowledge of attacker TTPs and MITRE ATT&CK frameworks ...

maintain and tune the detection catalogue Build automated reporting dashboards using Microsoft Sentinel workbooks Support security initiatives including ISO 27001 activities and KQL-based tasks Ensure monitoring coverage across cloud platforms, SaaS apps, and internal systems Contribute to documentation of processes, tools, and detection logic What You’ll Bring Must … Have Skills & Experience: Previously worked as a Threat Detection Engineer or in a similar role. Strong proficiency in KQL and hands-on experience with Microsoft Sentinel Familiarity with Microsoft Defender tools (Endpoint & O365) Exposure to Azure cloud logging and Kubernetes environments Knowledge of attacker TTPs and MITRE ATT&CK frameworks ...

commercial experience in SOC content engineering, detection engineering, or SIEM administration Strong hands-on experience with SIEM platforms and query languages (e.g. SPL, KQL) Solid understanding of detection engineering principles, data modelling, and regex Proven experience working with MITRE ATT&CK and threat-informed defence strategies Ability to design ...

broader Zero Trust and Microsoft Defender security architecture Monitoring, Security & Reporting Build dashboards for elevation activity, risk trends, and anomalous behaviour Use Log Analytics (KQL), Microsoft Defender, and Graph API for automation and insights Provide regular reporting to security governance and risk forums Support audit and compliance requirements with clear …/Zero Trust security models Windows endpoint security and hardening Application analysis for privilege requirements Microsoft Defender for Endpoint (ASR policies) Log Analytics/KQL for security monitoring Strong PowerShell scripting and automation experience Experience integrating with Microsoft Graph API Desirable Experience Microsoft Defender XDR/vulnerability management Conditional Access ...

MITRE ATT&CK or Cyber Kill Chain frameworks Exposure to SaaS and cloud-native security tooling Experience with scripting or query languages (e.g. KQL, SPL, Python) Familiarity with DevOps environments and CI/CD pipelines Experience with identity security and access controls Benefits Competitive salary and performance-based bonus ...

frameworks Experience with cloud data platforms (ideally Microsoft Fabric) Familiarity with Power BI or similar BI tools Ability to optimise and troubleshoot query performance Strong … analytical and problem-solving skills Desirable Skills Knowledge of modern data architectures Experience with SQL, SSRS, SSIS and SSAS Experience using PySpark Familiarity with KQL Experience with data cataloguing tools Exposure to C# What you'll get in return Competitive Salary - £52,750 with a generous hybrid working policy. Pension ...

Microsoft Fabric Engineer - London Hybrid working - London Salary upto £90,000 A leading client in London seeks a Microsoft Fabric Engineer to design and deliver data and AI solutions on the Microsoft Fabric platform. As ...

release processes Use Git, Azure DevOps, Kanban/Scrum and structured development workflows Work with data tools including SQL Server, Azure Data Explorer and KQL Use AI-assisted tools (e.g., GitHub Copilot) responsibly to speed up development Collaborate with developers, testers and internal users to clarify requirements and resolve issues … practical, detail-driven and happy to ask questions and learn from others Software Developer, nice to haves - Python experience Exposure to Blazor, Azure Functions, KQL or cloud/AI tooling Highly collaborative team environment offering genuine career growth opportunities.**Please note, this role requires a valid right to work ...