Enable job alerts via email!

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Oxford

Remote

GBP 70,000 - 85,000

Full time

Yesterday

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading security consultancy is seeking a Senior Microsoft Sentinel / SIEM Engineer for a fully remote position in the UK. You will work with a global security powerhouse, focusing on complex integration tasks and cyber defense against sophisticated threats. This role offers growth opportunities within a respected team and access to cutting-edge Microsoft features, making it ideal for an innovative engineer in the field.

Benefits

Access to Microsoft Sentinel product teams

Involvement in nation-state attack detection

Opportunity to enhance Sentinel skills

Flexible remote work culture

Career growth within a security consultancy

Qualifications

Experience with Microsoft Sentinel at SMC and enterprise levels.
Knowledge of security telemetry across identity, endpoint, cloud, and network.
Ability to work in fast-paced, customer-facing environments.

Responsibilities

Own and optimize log onboarding into Microsoft Sentinel, deploying connectors.
Focus on cyber defense and investigations with nation-state threat actors.
Work closely with IR teams and Microsoft to develop detection capabilities.

Skills

Experience with Microsoft Sentinel

Knowledge of security telemetry

Skills in SIEM content development

Scripting skills in Python and PowerShell

Background in cyber threat detection

Problem-solving skills

Tools

PowerShell

Python

REST APIs

Social network you want to login/join with:

Senior Microsoft Sentinel / SIEM Engineer, Oxford district

Client: Cloud Decisions

Location: Oxford district, United Kingdom

Job Category: Other

EU work permit required: Yes

Job Views: 5

Posted: 06.06.2025

Expiry Date: 21.07.2025

Job Description:

Job Title: Senior Microsoft Sentinel / SIEM Engineer

Salary: Up to £85,000 + Benefits + Microsoft

Location: Fully Remote, UK

Company: Global Microsoft Managed MISA Partner

This role involves complex Sentinel Engineering/Integration, working with a global security Microsoft powerhouse. You'll be part of a team with Security MVPs and a Microsoft Verified Safe XDR Solution Partner, gaining access to Microsoft's security roadmap and support.

The position focuses on cyber defence, involving investigations with nation-state threat actors and enterprise-scale log ingestion and Sentinel integration engineering. You will own and optimize log onboarding into Microsoft Sentinel, deploying connectors and parsers, and working closely with IR teams and Microsoft to develop detection capabilities.

Requirements:

Experience with Microsoft Sentinel at SMC and enterprise levels
Knowledge of security telemetry across identity, endpoint, cloud, and network
Skills in SIEM content development, KQL, analytics rules, and custom connectors
Scripting skills in Python, PowerShell, APIs, Function Apps
Background in cyber threat detection, incident response, or DFIR (preferred)
Ability to work in fast-paced, customer-facing environments

Technical Skills:

PowerShell, Python, REST APIs
Log ingestion across Azure, AWS, GCP, M365, Defender, Entra, Copilot, Carbon Black, Okta, and network vendors
Knowledge of MITRE ATT&CK, threat detection frameworks, IOC enrichment
Problem-solving skills
Sentinel/Log Analytics Cost Management and Data Optimization

Benefits:

Access to Microsoft Sentinel product teams and early features
Involvement in real-world nation-state attack detection
Opportunity to enhance Sentinel skills
Part of a Microsoft Security elite MISA and Depth partner
Exposure to multi-cloud detection and security automation
Remote work with flexible culture and global team collaboration
Career growth within a respected security consultancy

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.