Job Level
Mid-LevelSenior
Tech Stack
AzureCloud
About the role
- Review and enhance XDR/security policies and ensure all devices are covered under these policies
- Analyse vulnerabilities and stay ahead of cyber threats
- Log analysis, threat investigation, and incident response using query languages (KQL, XQL)
- Integrate SIEM and EDR tools and manage incidents
- Perform security posture assessments, compliance reviews and gap analysis
- Provide client-facing advisory, conduct workshops and trainings
- Prepare detailed reports, logs and client deliverables
- Collaborate with internal and external teams across technical and non-technical stakeholders
- Maintain up-to-date knowledge of emerging threats and technologies
Requirements
- Strong experience with XDR platforms (Microsoft Defender XDR, Palo Alto Cortex XDR, etc.)
- Strong understanding of network protocols, cloud services, and operating systems
- Experience with security frameworks and risk management methodologies
- Knowledge of threat intelligence and vulnerability management
- Log analysis, threat investigation, and query language proficiency (KQL, XQL)
- SIEM and EDR integration, incident management, and response skills
- Security posture assessments, compliance reviews, and gap analysis
- Technical knowledge of Microsoft 365 security, Azure Active Directory, and cloud security platforms
- Fluent English
- Nice to have: Certified Ethical Hacker (CEH); CompTIA Security+; Blue Team Level 2 (BTL2); Offensive Security (OSDA / OSCP)
- Communication: Ability to explain technical security subjects to IT staff, executives, and end-users; strong oral and written communication
- Critical thinking & problem solving skills
- Client-facing & advisory experience, including running workshops or trainings
- Collaboration skills across technical and non-technical stakeholders
- Organization & documentation skills for reports, logs, and client deliverables