76 to 89 of 89 Sentinel Jobs

management. Own the detection strategy and roadmap, aligning initiatives with KPIs and contractual requirements. Develop, optimise, and maintain high-fidelity detections using Splunk , Microsoft Sentinel , KQL , SPL , and Python for automation and Detection as Code. Work closely with cloud platforms ( AWS and Azure ) to enhance detection capabilities in hybrid environments. … planning with day-to-day responsibilities. Essential Skills and Experience: SC clearance required to start; DV sponsorship available. Proven expertise with Splunk and Microsoft Sentinel SIEM platforms. Strong programming skills in Python , with experience developing automation and Detection as Code pipelines. Proficiency in KQL and SPL for creating efficient, high ...

technical ownership and variety across the full defensive lifecycle. What You’ll Be Doing Lead investigations, triage and containment using SIEM/EDR (Microsoft Sentinel preferred) Harden IAM, PIM/PAM , Windows/Linux, endpoint baselines and identity services Strengthen M365 security : Defender for Endpoint/O365/Identity, Conditional … hardening (Windows + Linux) Network security concepts (firewalls, IDS/IPS) Incident Response & Detection Hands-on IR: triage investigation containment recovery Experience with SIEM (Sentinel strongly preferred) Experience with EDR/XDR tools: Defender/CrowdStrike/SentinelOne Log analysis, packet captures, forensic investigation fundamentals Microsoft Security Defender suite: Endpoint ...

Threat Intelligence Analyst, Threat Intelligence Analyst or Threat Hunting role Strong understanding of cyber threats, malware and adversary TTPs Hands-on experience with Microsoft Sentinel and Defender XDR Good working knowledge of KQL (Kusto Query Language) Strong understanding of the MITRE ATT&CK framework Experience investigating IOCs and real-world … Threat Intelligence Analyst , not rigid office attendance. Keywords Cyber Threat Intelligence Analyst, Threat Intelligence Analyst, Cyber Threat Analyst, Threat Hunter, Cyber Security Analyst, Microsoft Sentinel, Defender XDR, KQL, Kusto Query Language, SIEM, EDR, MITRE ATT&CK, Threat Hunting, Cyber Threat Intelligence, Malware Analysis, IOCs, OSINT, SOC, Incident Response, Blue Team ...

standardize Infrastructure as Code (IaC) templates using Terraform/Terraform Cloud for reusable, modular deployments. • Implement policy-as-code guardrails for compliance using Sentinel or OPA. • Drive Kubernetes cluster architecture, workload orchestration, and service mesh integration (Istio). • Collaborate with DevOps teams to integrate CI/CD pipelines for automated … Familiarity with CI/CD tools (Jenkins, GitHub Actions, Harness). • Proficiency in Python scripting for automation. • Understanding of policy-as-code frameworks (OPA, Sentinel) and cloud governance. • Certifications: GCP Professional Cloud Architect, Azure Solutions Architect Expert, Kubernetes Certified. • Good to have: Experience with IDE platforms for Cloud Engineering (e.g. ...

changes and follow agreed processes. Keep up to date with threats and recommend improvements. What you will bring: Clear understanding of Information Security fundamentals Sentinel OR Splunk experience. Familiarity with security monitoring/protective technologies. Good project-management skills; able to juggle multiple priorities. Analytical and systematic problem-solving approach … ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experience—especially Sentinel or Splunk. If you are interested in this role but not sure if your skills and experience are exactly what we’re looking for, please ...

changes and follow agreed processes. Keep up to date with threats and recommend improvements. What you will bring: Clear understanding of Information Security fundamentals Sentinel OR Splunk experience. Familiarity with security monitoring/protective technologies. Good project-management skills; able to juggle multiple priorities. Analytical and systematic problem-solving approach … environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experienceespecially Sentinel or Splunk. If you are interested in this role but not sure if your skills and experience are exactly what were looking for, please ...

timely and effective manner. Specifically you will: Support the rest of the security operations team to monitor, triage and investigate alerts and incidents within Sentinel Conduct initial incident triage, determining scope, urgency and appropriate actions to mitigate threats. Participate in the incident response process, assisting with investigation and remediation. Support … appreciation of how new security solutions can impact delivery. Experience with general security technologies and capabilities including Microsoft E5 technologies such as Azure Sentinel and the various Defender products would be a distinct advantage, as would exposure to automation and familiarity with Python to help streamline processes and support security ...

control). Integrate network deployments into CI/CD pipelines for automated provisioning and updates. Implement policy-as-code guardrails for network governance using Sentinel or OPA. Optimize network performance and reliability through monitoring, logging, and proactive tuning. Collaborate with security teams to implement network security best practices (firewall rules … automation. Familiarity with CI/CD tools (Jenkins, GitHub, Harness) for network automation. Knowledge of GCP Organization Policy and policy-as-code frameworks (Sentinel/OPA). GCP Certified (preferably Professional Cloud Network Engineer). Good to have: Experience with IDE platforms for Cloud Engineering (e.g., Backstage). Desirable skills ...

Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows Servers … tracked and documented. Essential Skills & Experience: Experience: 5–10 years in cloud or infrastructure security roles. Azure Expertise: Deep experience with Defender for Cloud, Sentinel, and Azure security configurations. Identity Mastery: Strong knowledge of Microsoft Entra ID, AD DS, RBAC, and hybrid identity security. Technical Proficiency: Hands-on experience with ...

Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows Servers … tracked and documented. Essential Skills & Experience: Experience: 5–10 years in cloud or infrastructure security roles. Azure Expertise: Deep experience with Defender for Cloud, Sentinel, and Azure security configurations. Identity Mastery: Strong knowledge of Microsoft Entra ID, AD DS, RBAC, and hybrid identity security. Technical Proficiency: Hands-on experience with ...

bring: Demonstrable experience in Security Operations Centre. People management experience to help develop Analysts and lead careers. Demonstrable experience of using Microsoft Sentinel and Splunk. Knowledge and experience with Mitre Att&ck Framework. Solid grasp of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus … Python, Perl, Bash, PowerShell, C++. CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar. If you are interested in this role but not sure if your skills and experience are exactly what ...

maintain Terraform modules for network patterns; establish standards and reusable templates. Policy as Code & Compliance Implement policy as code using OPA/Conftest or Sentinel; enforce guardrails on Terraform plans and runtime configs. Build compliance controls and continuous validation (CIS benchmarks, least privilege, route/firewall policies, DNS change governance … management, workspaces), Python scripting, CI/CD (GitHub Actions/GitLab CI/Azure DevOps). Policy as Code: OPA/Conftest or HashiCorp Sentinel; pre-commit hooks and plan enforcement. ServiceNow integrations**: Catalog/Change/CMDB; API-based workflows for provisioning and approvals. Solid understanding of network security ...

digital environment. Communications with key business partners is key regarding risks, threats and SOC performance. Familiarity with NIST Cybersecurity, MITRE ATT&CK, Splunk, Sentinel and ISO27001 is vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews, and foster … insights. Strong track record in threat detection, incident management, and escalation handling. Hands-on experience managing SIEM and SOAR platforms such as Splunk, Microsoft Sentinel, or Elastic. Skilled in coaching analysts, building high-performing teams, and managing effective shift models. Confident communicator with the ability to translate complex technical risks ...

related services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container workflows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. Harden … alignment with the Cyber Security Strategy. What skills and knowledge are we looking for? Deep hands-on knowledge of Microsoft security stack (M365 Defender, Sentinel, Intune, Azure Policy, PIM). Proven experience deploying Cisco Meraki and Umbrella in enterprise environments. Experience in securing Kubernetes, cloud-native infrastructure, and containerised apps. ...