In a client-facing consultancy role, you will work on exciting projects that transform our client’s Cyber Defense strategy and operations through the design and implementation of predominantly Microsoft Threat Protection technologies. As a member of our security practice, you will work for both Avanade and Accenture clients, ranging from medium to large global enterprise clients. Join a curious and diverse team that’s passionate about next-gen tech and establish yourself as a Leader in the Cyber Defense space. Together, let’s transform cybersecurity. Duties • Design and implement Anti-Virus and Endpoint Detection and Response solutions to protect, detect and response to cyber incidents on endpoints across all major operating systems in the Microsoft ecosystem (E.g. Defender for Endpoint) • Protect email, instant messaging, and collaboration platforms from malicious attacks, such as Phishing as well as from more sophisticated attacks such as Spear Phishing, Business Email Compromise, and identity theft. • Perform use case development and rules that can be applied to consolidate events across disparate systems and used to identify an attack chain across systems. • Design, implement, and integrate security incidents and event management solutions into Security Operations with a particular focus on Azure Sentinel expertise. • Use case development and rules that can be applied to consolidate events across disparate systems and used to identify an attack chain across systems in the Microsoft ecosystem. • Perform threat hunting across endpoints, identities, networking, cloud, and collaboration platforms in the Microsoft ecosystem. Skills • Microsoft Sentinel Design, Build, and Commissioning: Expertise in designing, building, and commissioning Microsoft Sentinel solutions. • Microsoft Defender for Endpoint and Defender for Cloud Analysis and Remediation: Proficiency in analyzing and remediating issues using Microsoft Defender for Endpoint and Defender for Cloud. • L2 Security Incidents: Experience in handling Level 2 security incidents from Microsoft Sentinel. • Infrastructure Security: Strong background in infrastructure security. • SIEM: Experience in Microsoft Sentinel architecture and deployment. Knowledge of multi-tenant SIEM architecture, Sentinel analytics rules, workbooks and playbooks. • Azure Logic Apps: Experience in creating, running and troubleshooting. • Threat Modelling and Incident Response: Ability to perform threat modelling and respond to security incidents effectively. • Security Vulnerability Remediation: Experience in remediating security vulnerabilities within Azure-hosted environments. • Agile Methodologies: Familiarity with working within agile methodologies and contributing to backlog items, such as Microsoft Defender for Cloud outputs. • Cyber Defence: Understanding and experience with analyzing complex cyber defence issues, troubleshooting, and implementing solutions. • Communication and Collaboration: Excellent communication skills and the ability to collaborate effectively with team members and stakeholders. • Microsoft Security Operations Analyst: As a candidate, you should be a Microsoft security operations analyst who reduces organizational risk by rapidly remediating active attacks, advising on improvements to threat protection practices, and identifying violations of organizational policies. • Triage and Incident Response: Perform triage, respond to incidents, and mitigate risk by using exposure management. • Threat Hunting: Hunt for threats using threat intelligence and tools such as Microsoft Defender XDR, Security Copilot, and Microsoft Sentinel. • Kusto Query Language (KQL): Proficiency in using KQL for reporting, detections, and investigations. • Security Standards: Collaborate with business and security leadership to define and implement security standards, enhance the security posture of the organization, and raise security awareness. • Microsoft Technologies: Familiarity with Microsoft 365, Azure cloud services, Windows, Linux, and mobile operating systems About you Characteristics that can spell success for this role: • Consultative, collaborative, relationship builder • Resilient, adaptable, flexible • Intellectually curious and passionate about Microsoft Technologies (M365 Threat Protection (Security Center, MCAS, Defender for endpoint, Office 365, Identity) • Problem-solver, patient and quality-driven • Self-motivating • Innovative mindset