Responsibilities
* Able to develop and maintain high-fidelity detection rules using Kusto Query Language
* Able to utilize KQL for detection engineering, analytics, and threat-hunting.
Microsoft Sentinel
* Act as the technical SME
* Hands-on experience including analytics rules, connectors, and workbooks.
* Ensure platform reliability and data quality.
* Coordinate the end-to-end onboarding of log sources into Sentinel.
Key skills/knowledge/experience
* Expert in KQL
* Technical SME for Sentinel set up
* Strong understanding of cloud and on premises logging (Windows, Linux, application, DB, identity).
* Experience onboarding data using AMA, DCRs, syslog/CEF, and Event Hub integrations.
* Comfortable using AI assisted tooling (e.g., Copilot for Security) to enhance productivity.
#J-18808-Ljbffr