Job Description
The Enterprise is seeking an experienced Sentinel Engineer for a Work From Home (WFH) permanent role.
Key Responsibilities:
* Support and manage production cyber security incidents in a Managed Services/Operations setting.
* Hands-on design and configuration of the Microsoft Defender and Sentinel product Suites.
* Support the evolution and implementation of AI to automate Investigation and Response.
* Support the team in providing Cybersecurity expertise.
* Create and develop Sentinel queries and playbooks.
* Perform security analyst operations within Azure Sentinel including incident response and remediation of any related issues.
* Drive strategic and complex projects with many critical dependencies.
* Drive the development of Cybersecurity decoy systems to lure attackers off track leveraging Microsoft tools.
* Manage the Endpoint Detection and Response support and administration.
Qualifications and Experience:
* Relevant track record of Cybersecurity experience.
* Strong proficiency in Microsoft Sentinel and Microsoft Defender (implementation, administration, and troubleshooting).
* Good overall knowledge of Microsoft Security products.
* Experience in threat Detection and Analysis.
* Knowledge of Azure cloud services and Azure Log Analytics.
* Experience and Knowledge in Security Incident and Event Management (SIEM).
* Experience and knowledge in Power Shell or KQL.
* Demonstrated ability to organise teams toward a common objective.
* Ability to take ownership of delivery assignments and work in a team to accomplish joint goals.
* Security Operations Centre analyst background.