Job Description
Microsoft Sentinel SIEM Engineer - SOC Engineer - Remote with Occasional Travel to Birmingham or Edinburgh**PLEASE NOTE - DUE TO THE NATURE OF THE ROLE WE REQUIRE CANIDIDATES WHO HAVE THE RIGHT TO WORK IN THE UK AND ARE ELIGIBLE FOR SECURITY CLEARANCEAs a SIEM Engineer, you will primarily be responsible for the professional support and delivery of infrastructure to our Managed Detection and Response clients.We are looking for a candidate with previous experience in administering various flavours of Linux operating systems in a Microsoft Azure environment. Ideally you will have been working with the technology stack comprising our SIEM platform including Sentinel and platform as a service tools like Docker.You will be familiar with industry standard frameworks such as ITIL and the CIS Hardening Guides, and have working knowledge of Jira, GIT and other key deployment tools.You will have excellent organisational and communication skills and attention to detail. You will be comfortable conversing on the phone or in a video call with internal and external customers as well as technical and management resource s from other parts of the organisation and be an excellent oral and written communicator. Microsoft Sentinel ResponsibilitiesEnd-to-end deployment of Azure SentinelConfiguration of Data connectors for Security Events, Threat Intelligence Platforms, Linux Syslog, Office 365, etcConfiguration of Linux Syslog servers for ingestion of logs via Log Analytics agentsCreate custom analytics rules to detect threatsBuild dashboards for customers and visualize collected dataInfrastructure Responsibilities Manage customer infrastructure including Linux servers and various Azure capabilitiesPro-active identify potential issues in systems and technology stacks and coordinate with other team members to ensure operational issues do not impact customer facing SLAsMonitoring and troubleshooting of functional and performance issuesImplementation of hardening measures and security baselinesActing as a point of escalation to service incidentsTesting and validation of new technologies to be integrated into future architecture releases of our containerised platformsGet in touch now with our talent team to discuss