Job Description

We provide outsourced security event monitoring and incident response services to a wide variety of clients using a Microsoft centric technology stack. We are looking for experienced security operations engineers to join in a rapidly expanding team that provides service to internal and external customers.


If you have a background in support, deployment, or security operations and would like to expand your skills in a Microsoft focused security role this could be the position for you.


As a Microsoft Gold partner, we invest heavily in training and provide the time and support for you to achieve accreditations from Microsoft Security Operations Analyst through to Microsoft Certified Security Administrator Associate.


Location

Flexible work from home policy.

Key Responsibilities

------------------------

Deploy and maintain systems and services that support the organization's security operations managed services. Assist in configuring and supporting integrations between Microsoft Sentinel and other systems to ensure effective data collection and communications. Work closely with developers to implement automation workflows for routine SOC tasks such as alert enrichments, notifications, and data gathering, providing technical support and testing. Monitor and maintain the health of existing systems, troubleshoot issues, and identify opportunities for optimization to improve efficiency and functionality. Create and maintain custom analytic rules to improve detection and coverage in Microsoft Sentinel. Develop low code applications that drive processes and procedures using Azure resources and online services APIs. Assist in onboarding customers to the secure365 service, ensuring proper configuration and setup of security solutions. Support the security operations analysts with bespoke analytics queries and hunting scenarios. Participate in the research and development of systems and processes.

Essential Experience

------------------------

Experience in a SOC or security team. Hands-on experience with Microsoft Sentinel: Proven track record in writing KQL, hunting, and incident response processes within Microsoft Sentinel. Experience in managing Data Connectors and the processes behind them. Strong understanding of Workbooks development and integration. Proficiency in KQL. Experience using Linux. Good written and verbal communication skills. Technical understanding of IT infrastructure + Microsoft 365 suite
+ Defender XDR
+ Entra ID (Azure Active Directory)
+ Azure portal
+ Microsoft Intune

Preferred Experience

------------------------

Experience with Azure Logic Apps design, testing, and deployment. Experience with Microsoft XDR suite. Microsoft certifications: AZ-500, SC-100, SC-200, SC-300, SC-400, AZ-204

Package

-----------

Competitive Market Salary 35k - 45k (experience dependent) 33 days annual leave allowance per year (25 days standard plus 8 bank holidays). Westfield Health Membership (offering cashback on health services plus discounts for retailers and gym memberships). Life Cover (2 x basic salary). Employer pension contribution (4% employer, 4% employee). Continual training and career development. * Referral Scheme.