Job Description
A multinational semiconductor and software design company seeks a Microsoft Security (Sentinel) Automation & Detection Engineer for a 6-month contract to start ASAP, based in Cambridge (Hybrid), Inside IR35
Role Overview:
Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of Microsoft SIEM detections and security automations.
The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell, KQL) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment.
Key Skills and Experience
Experience contributing to large-scale, sprint-based, security automation and detection engineering projects in a SOC/ Cyber Defense or similar environment
Recent hands-on experience with managing and implementing Microsoft Sentinel log sources and detection, with knowledge of the related technical best practices in Sentinel and Azure specifically across
Sentinel Content Hub,
Sentinel Analytics,
Sentinel Automation,
Azure Event Hub,
Azure Logic Apps
Azure Function Apps.
Experience in Sentinel/Analytics Rules/Logic App automations...