Job Description: CyberSecurity Consultant - Microsoft Sentinel:
Job Title: SOC SME
Contract Type: Technical Professional (TP) Contract
Location: Coventry, England,
Work Model: Hybrid (3 days on-site at customer location)
Experience Level: 10+ years in Cyber Security Designing & Implementation
Overview:
* We're seeking a highly experienced and technically proficient
Security Operations Center (SOC) Subject Matter Expert (SME)
to drive the architecture, implementation, and optimization of Microsoft Sentinel within a critical operational technology (OT) environment.
* The ideal candidate will possess deep hands-on expertise in Sentinel and a strong background in broader cybersecurity domains, particularly SIEM, SOAR, and Threat Intelligence.
* This is a technical professional (TP) contract role.
Primary Role and Responsibilities:
The candidate will serve as the
Technical SME for Microsoft Sentinel
and is expected to lead the deployment and ongoing management of the platform, focusing heavily on integrating and securing operational technology (OT) environments.
Microsoft Sentinel Leadership and Deployment:
* Lead Sentinel Deployment for OT SOC:
Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring, threat detection, and incident response capabilities.
* Technical SME:
Serve as the hands-on technical Subject Matter Expert for Microsoft Sentinel, providing guidance, deep technical implementation, and troubleshooting.
* Log Source Integration:
Configure and onboard diverse and complex log sources into Sentinel, including specialized OT systems (e.g.,
Nozomi Networks
),
firewalls
,
EDR
solutions (e.g.,
Defender for Endpoint
), and
Vulnerability Management and Detection and Response (VMDR)
tools (e.g.,
Qualys
), as well as other critical IT/OT systems.
Mandatory Skills and Experience:
* 10+ years
of progressive experience in Cyber Security focused on
Designing & implementation
of security solutions.
* Deep, demonstrable hands-on experience
as a Subject Matter Expert with
Microsoft Sentinel
(Azure Sentinel).
* Expertise in
Kusto Query Language (KQL)
for detection rule development and log analysis.
* Proven experience in
Log Source Integration
across diverse environments, including OT, network, and endpoint security tools.
* Strong practical knowledge of
Security Orchestration, Automation, and Response (SOAR)
, particularly using Azure Logic Apps or similar platforms.
If interested, or you know someone that could be, please reach out and we can arrange a time to speak?