176 to 200 of 287 Sentinel Jobs

Engineer to support a leading government client . The role is based in London and will need 2/3 days on site.Im looking for someone that has recent Sentinel and Defender experience and is a SME in this area Background skills required. • Policy Enforcement: Implement Conditional Access, MFA, and DLP policies. Maintain security posture using Secure Score and Compliance … accounts 40% of workload. • PowerShell Scripting: Automate routine tasks and configurations across O365 services • Policy Development: Support creation and enforcement of Council-wide O365 usage policies • Configure and maintain Sentinel workspaces aligned with Council tenancy and compliance requirements. • Integrate data sources including Defender for Endpoint, Defender for Identity, Office 365 audit logs, Azure AD, and third-party connectors. • Develop and … implement playbooks and alert rules for automated incident response. • Collaborate with the Service Desk to triage and escalate Sentinel alerts. • Administer and maintain Microsoft 365 services including Exchange online, Exchange on prem and managing hybrid setup. • Administer and optimise Microsoft Defender XDR solutions including Defender for Cloud Apps, Defender for Office 365, and Defender for Identity. • Implement Conditional Access, Multi More ❯

be very visible cross the business. Must have: Proven Project Delivery Experience in Microsoft Cloud security. Proven experience of working on multiple projects at any one time. Purview, Defender, Sentinel, and Entra knowledge essential Ability to onboard customers onto Managed Services after delivery. Be able to give expert advice on Cyber Essentials Lead, Plan, Desing and Implement projects from start More ❯

be very visible cross the business. Must have: Proven Project Delivery Experience in Microsoft Cloud security. Proven experience of working on multiple projects at any one time. Purview, Defender, Sentinel, and Entra knowledge essential Ability to onboard customers onto Managed Services after delivery. Be able to give expert advice on Cyber Essentials Lead, Plan, Desing and Implement projects from start More ❯

be very visible cross the business. Must have: Proven Project Delivery Experience in Microsoft Cloud security. Proven experience of working on multiple projects at any one time. Purview, Defender, Sentinel, and Entra knowledge essential Ability to onboard customers onto Managed Services after delivery. Be able to give expert advice on Cyber Essentials Lead, Plan, Desing and Implement projects from start More ❯

be very visible cross the business. Must have: Proven Project Delivery Experience in Microsoft Cloud security. Proven experience of working on multiple projects at any one time. Purview, Defender, Sentinel, and Entra knowledge essential Ability to onboard customers onto Managed Services after delivery. Be able to give expert advice on Cyber Essentials Lead, Plan, Desing and Implement projects from start More ❯

be very visible cross the business. Must have: Proven Project Delivery Experience in Microsoft Cloud security. Proven experience of working on multiple projects at any one time. Purview, Defender, Sentinel, and Entra knowledge essential Ability to onboard customers onto Managed Services after delivery. Be able to give expert advice on Cyber Essentials Lead, Plan, Desing and Implement projects from start More ❯

be very visible cross the business. Must have: Proven Project Delivery Experience in Microsoft Cloud security. Proven experience of working on multiple projects at any one time. Purview, Defender, Sentinel, and Entra knowledge essential Ability to onboard customers onto Managed Services after delivery. Be able to give expert advice on Cyber Essentials Lead, Plan, Desing and Implement projects from start More ❯

launch your career today. Northrop Grumman Defense Systems is seeking Principal DevOps Engineer . This position will be located in Huntsville, AL or Roy, Utah and will support the Sentinel program. Position Benefits: As a full-time employee of Northrop Grumman Space Systems, you are eligible for our robust benefits package including: Medical, Dental & Vision coverage 401k Educational Assistance Life More ❯

will be responsible for implementing and maintaining robust security measures to protect the organisation's technology infrastructure. Client Details The organisation is a public sector. Description Key Responsibilities Microsoft Sentinel Configure and maintain Sentinel analytics rules, workbooks, and connectors Develop and optimise dashboards and reports for threat visibility Manage Sentinel upgrades and ensure platform stability Conduct threat hunting and incident … across Defender platforms Collaborate with IT teams to remediate vulnerabilities and improve endpoint security SOAR Automation Design, build, and deploy automated playbooks using Logic Apps Integrate SOAR workflows with Sentinel and Defender alerts Continuously improve automation to reduce response times and manual effort Strategic & Analytic Duties Analyse security datasets to identify trends and emerging threats Produce actionable plans and reports … for senior stakeholders Drive multiple concurrent initiatives, from tactical fixes to strategic improvements Profile A successful Infrastructure Security Engineer should have: Hands-on experience with Microsoft Sentinel including configuration, reporting, and upgrades Strong understanding of SOAR playbook development and automation Ability to manage multiple simultaneous initiatives effectively Proficiency in KQL, Azure Logic Apps, and Microsoft Defender suite Analytical mindset with More ❯

Security Consultant who can provide practical advice and hands-on support to improve security project and manage alerts. We’re seeking a specialist who has expertise in Microsoft Defender & Sentinel who can turn alert data into actionable intelligence, identify opportunities for optimisation, and advance the customer’s SOC maturity through data-driven improvements and Sentinel/Defender best practices. As … implement changes and improve security. Cyber Security Consultant’s Responsibilities: Develop and fine-tune KQL queries for advanced threat hunting and custom analytics in Microsoft Sentinel. Analyse Defender and Sentinel alert data to uncover insights, refine alerts, and reduce false positives. Design and optimise correlation rules across Defender, Sentinel, and integrated data sources to improve detection accuracy and triage speed. … strengthen detection and response. Recommend SOC process improvements through data-driven insights and best practice alignment. Cyber Security Consultant’s Required Knowledge and Experience: Extensive experience with Microsoft Defender, Sentinel, and possibly working in a Security Operations Centre (SOC). Experience extracting alert data and able to put strategies in place to improve business operations. Expertise in creating runbooks and More ❯

to security alerts across their Microsoft security ecosystem. Strong experience troubleshooting and responding to alerts would be the main focus of the role. Strong expertise with Microsoft Defender and Sentinel is needed. Key Skills & Experience from the Security Engineer: Strong experience with Microsoft Sentinel (SIEM) and Microsoft Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in … security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within Sentinel or similar). Understanding of threat detection, log analysis, and automation within Microsoft’s security ecosystem. Experience with Tenable is beneficial Knowledge of Microsoft Purview would be beneficial Key Responsibilities of the Security Engineer: Monitor, investigate, and respond to security alerts and incidents in … Microsoft Sentinel and Microsoft Defender . Perform detailed security event analysis and correlation, escalating incidents where necessary. Develop and optimise SOAR (Security Orchestration, Automation and Response) playbooks to enhance incident response and efficiency. Collaborate with wider IT and security teams to improve threat detection, incident handling, and response processes. Apply now to speak with VIQU IT in confidence about the More ❯

to security alerts across their Microsoft security ecosystem. Strong experience troubleshooting and responding to alerts would be the main focus of the role. Strong expertise with Microsoft Defender and Sentinel is needed. Key Skills & Experience from the Security Analyst: Strong experience with Microsoft Sentinel (SIEM) and Microsoft Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in … security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within Sentinel or similar). Understanding of threat detection, log analysis, and automation within Microsoft’s security ecosystem. Experience with Tenable is beneficial Knowledge of Microsoft Purview would be beneficial Key Responsibilities of the Security Analyst: Monitor, investigate, and respond to security alerts and incidents in … Microsoft Sentinel and Microsoft Defender . Perform detailed security event analysis and correlation, escalating incidents where necessary. Develop and optimise SOAR (Security Orchestration, Automation and Response) playbooks to enhance incident response and efficiency. Collaborate with wider IT and security teams to improve threat detection, incident handling, and response processes. Apply now to speak with VIQU IT in confidence about the More ❯

Type of employment - Contract (Initially 6 months) Job Description: Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including … Develop, and fine-tune KQL-based analytics rules tailored to OT threat scenarios, ensuring high-fidelity alerts and minimal false positives. Threat Intelligence Integration Integrate threat intelligence feeds into Sentinel to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security More ❯

Type of employment - Contract (Initially 6 months) Job Description: Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including … Develop, and fine-tune KQL-based analytics rules tailored to OT threat scenarios, ensuring high-fidelity alerts and minimal false positives. Threat Intelligence Integration Integrate threat intelligence feeds into Sentinel to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security More ❯

Type of employment - Contract (Initially 6 months) Job Description: Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including … Develop, and fine-tune KQL-based analytics rules tailored to OT threat scenarios, ensuring high-fidelity alerts and minimal false positives. Threat Intelligence Integration Integrate threat intelligence feeds into Sentinel to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security More ❯

Type of employment - Contract (Initially 6 months) Job Description: Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including … Develop, and fine-tune KQL-based analytics rules tailored to OT threat scenarios, ensuring high-fidelity alerts and minimal false positives. Threat Intelligence Integration Integrate threat intelligence feeds into Sentinel to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security More ❯

Job Title: SOC Engineer (Azure Sentinel & Google Chronicle) Location: Work from home Role: Join a leading Cyber Security company dedicated to helping organizations tackle their biggest security challenges. As a SOC Engineer, you’ll be part of a team that partners with clients to provide top-tier protection and threat detection using Azure Sentinel and Google Chronicle. If you have … expertise in configuring and troubleshooting Azure Sentinel or Google Chronicle and want to work on exciting, impactful projects, this is the role for you. Work closely with clients to onboard and optimise their security infrastructure Troubleshoot and ensure the availability of critical systems Help shape industry standards for log source onboarding Responsibilities: Onboard clients to the SIEM platform and integrate … compliance with those standards Provide technical expertise in logs from operating systems and security tools Skills/Must have: At least 1 year of hands-on experience with Azure Sentinel or Google Chronicle configuration and troubleshooting Knowledge of log ingestion systems, including firewalls, antivirus, switches, EDR tools, and Windows/Linux servers Experience working in Unix/Linux environments Benefits More ❯

threats, triage alerts, and identify anomalous behaviours before they escalate. Manage vulnerability assessments end-to-end, driving remediation outcomes with customers and internal teams. Optimise the Microsoft Security Stack: Sentinel, Defender (for Endpoint/Identity), Purview, and XDR. Support Zero Trust adoption, GRC initiatives, and audit/compliance reporting (ISO27001, NIST, SOC2, CE+). Centralise and improve visibility of security … SC-200, SC-500 (SC-100 ideal). 3+ years of technical cyber security experience, preferably in an MSP, Enterprise SOC, or consultancy. Hands-on experience with Microsoft Sentinel, Defender, Purview, and XDR. Broad SIEM capability: ideally Microsoft Sentinel or Splunk—and able to go beyond dashboards to build detections, correlations, and meaningful insights. Experience centralising log sources and onboarding More ❯

threats, triage alerts, and identify anomalous behaviours before they escalate. Manage vulnerability assessments end-to-end, driving remediation outcomes with customers and internal teams. Optimise the Microsoft Security Stack: Sentinel, Defender (for Endpoint/Identity), Purview, and XDR. Support Zero Trust adoption, GRC initiatives, and audit/compliance reporting (ISO27001, NIST, SOC2, CE+). Centralise and improve visibility of security … SC-200, SC-500 (SC-100 ideal). 3+ years of technical cyber security experience , preferably in an MSP, Enterprise SOC, or consultancy. Hands-on experience with Microsoft Sentinel, Defender, Purview, and XDR . Broad SIEM capability: ideally Microsoft Sentinel or Splunk —and able to go beyond dashboards to build detections, correlations, and meaningful insights. Experience centralising log sources and More ❯

threats, triage alerts, and identify anomalous behaviours before they escalate. Manage vulnerability assessments end-to-end, driving remediation outcomes with customers and internal teams. Optimise the Microsoft Security Stack: Sentinel, Defender (for Endpoint/Identity), Purview, and XDR. Support Zero Trust adoption, GRC initiatives, and audit/compliance reporting (ISO27001, NIST, SOC2, CE+). Centralise and improve visibility of security … SC-200, SC-500 (SC-100 ideal). 3+ years of technical cyber security experience , preferably in an MSP, Enterprise SOC, or consultancy. Hands-on experience with Microsoft Sentinel, Defender, Purview, and XDR . Broad SIEM capability: ideally Microsoft Sentinel or Splunk —and able to go beyond dashboards to build detections, correlations, and meaningful insights. Experience centralising log sources and More ❯

a 3-month contract basis. This is a great role for a SecOps professional to support a FTSE100 company. The SecOps Analyst will be responsible for the management of Sentinel incidents as well as ticket management for ITSM incidents and service requests. Key Skills: Proven Technical Operations Security experience Sentinel experience, including developing of alerts, automation etc ITSM ticket management More ❯

a 3-month contract basis. This is a great role for a SecOps professional to support a FTSE100 company. The SecOps Analyst will be responsible for the management of Sentinel incidents as well as ticket management for ITSM incidents and service requests. Key Skills: Proven Technical Operations Security experience Sentinel experience, including developing of alerts, automation etc ITSM ticket management More ❯

a 3-month contract basis. This is a great role for a SecOps professional to support a FTSE100 company. The SecOps Analyst will be responsible for the management of Sentinel incidents as well as ticket management for ITSM incidents and service requests. Key Skills: Proven Technical Operations Security experience Sentinel experience, including developing of alerts, automation etc ITSM ticket management More ❯

completed on a fully remote basis and is determined as Inside IR35, offering £500–£525 per day. Key Skills: Microsoft Defender XDR: Endpoint, Identity, Office 365, Cloud Apps Microsoft Sentinel: KQL, playbook development, SIEM optimisation Privileged Identity Management (PIM) and change control workflows Advanced threat detection, incident response, and threat hunting Log collection via Azure Monitoring Agent and Firewall Management … Centre Responsibilities: Configure and fine-tune Microsoft Defender XDR in line with approved designs Participate in Microsoft FastTrack engagements Integrate Defender XDR with Sentinel SIEM for enhanced detection and response Develop Kusto queries and automation playbooks Support PoC setup for Microsoft Copilot for Security Connect syslogs from on-prem servers and firewalls to Sentinel If this Security Engineer role sounds More ❯

completed on a fully remote basis and is determined as Inside IR35, offering £500–£525 per day. Key Skills : Microsoft Defender XDR: Endpoint, Identity, Office 365, Cloud Apps Microsoft Sentinel: KQL, playbook development, SIEM optimisation Privileged Identity Management (PIM) and change control workflows Advanced threat detection, incident response, and threat hunting Log collection via Azure Monitoring Agent and Firewall Management … Centre Responsibilities: Configure and fine-tune Microsoft Defender XDR in line with approved designs Participate in Microsoft FastTrack engagements Integrate Defender XDR with Sentinel SIEM for enhanced detection and response Develop Kusto queries and automation playbooks Support PoC setup for Microsoft Copilot for Security Connect syslogs from on-prem servers and firewalls to Sentinel If this Security Engineer role sounds More ❯