Design and implement Azure Sentinel architecture, including data connectors, analytics rules, logic apps, workbooks, and automation playbooks
Configure and manage Azure Sentinel data sources, such as Azure Activity Logs, Azure Security Center, Microsoft Defender for Cloud, and third-party data sources
Develop and maintain custom analytics rules, hunting queries, and machine learning models to detect and respond to security threats effectively
Collaborate with the security operations team to investigate and respond to security incidents, leveraging Azure Sentinel's incident management capabilities
Implement and maintain Azure Sentinel automation playbooks for incident response, orchestration, and integration with other security tools
Optimize Azure Sentinel performance, scalability, and cost-effectiveness through appropriate configuration and resource management
Stay up to date with the latest Azure Sentinel features, security best practices, and industry trends, and contribute to the continuous improvement of the organization's security posture
Provide technical guidance, mentoring, and knowledge sharing to junior team members and other stakeholders

Requirements

Bachelor’s degree in computer science, information technology, or a related field, or equivalent experience
Minimum of 5 years of experience in cybersecurity, with a strong focus on security information and event management (SIEM) solutions
Extensive hands-on experience with Microsoft Azure Sentinel, including deployment, configuration, and administration
In-depth knowledge of Azure services, such as Azure Monitor, Azure Security Center, and Azure Log Analytics
Proficiency in scripting languages (e.g., PowerShell, Python) and data analytics tools (e.g., Kusto Query Language)
Familiarity with security frameworks, standards, and best practices (e.g., NIST, CIS, MITRE ATT&CK)
Strong problem-solving, analytical, and troubleshooting skills
Excellent communication and collaboration abilities, with the ability to work effectively in a team environment
Certification in Microsoft Azure (e.g., Azure Security Engineer Associate) or other relevant security certifications is preferred.

Benefits

Comprehensive medical, dental, and vision insurance plans to keep you and your family healthy.
401(k) with company match to help you plan for the future.
Flexible time off policies to ensure you maintain a healthy work-life balance.
Opportunity to give back to our community with (paid) volunteer time off.
Training incentives and bonuses to help you and your career grow.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

Azure Sentineldata connectorsanalytics ruleslogic appsautomation playbooksscripting languagesPowerShellPythonKusto Query Languagesecurity information and event management

Soft Skills

problem-solvinganalytical skillstroubleshooting skillscommunicationcollaborationmentoringknowledge sharing

Certifications

Microsoft Azure Security Engineer Associate