Senior Microsoft Sentinel / SIEM Engineer

Social network you want to login/join with:

Client: Cloud Decisions

Location: Plymouth, United Kingdom

Job Category: Other

EU work permit required: Yes

Job Views: 6

Posted: 06.06.2025

Expiry Date: 21.07.2025

Job Title: Senior Microsoft Sentinel / SIEM Engineer

Salary: Up to £85,000 + Benefits + Microsoft

Location: Fully Remote, UK

Company: Global Microsoft Managed MISA Partner

Specialization: Complex Sentinel Engineering/Integration

This role offers a high-impact, technically advanced position with a global security Microsoft partner, providing access to Microsoft’s security product roadmap, previews, and frontline support. You will work on cyber defence investigations involving nation-state threat actors and develop enterprise-scale log ingestion and Sentinel integration skills.

• Own and optimize enterprise-wide log onboarding into Microsoft Sentinel
• Deploy connectors, Function Apps, and parsers for tailored SIEM solutions
• Manage log ingestion across hybrid and multi-cloud environments
• Enhance ingestion pipelines and custom Function Apps
• Parse and normalize log telemetry for accuracy and cost efficiency
• Collaborate with IR teams on real attacks
• Work with Microsoft teams on detection capabilities
• Contribute to knowledge base and engineering standards

• Experience with Microsoft Sentinel at SMC and enterprise levels
• Understanding of security telemetry across identity, endpoint, cloud, and network
• Skills in SIEM content development, KQL, analytics rules, and data connectors
• Scripting skills: Python, PowerShell, APIs, Function Apps
• Background in cyber threat detection, incident response, or DFIR (a plus)
• Ability to work in fast-paced, customer-facing environments

• PowerShell, Python, REST APIs
• Log ingestion and parsing across Azure, AWS, GCP, M365, Defender, Entra, Copilot, Carbon Black, Okta, and network vendors
• Knowledge of MITRE ATT&CK, threat frameworks, IOC enrichment
• Problem-solving skills
• Sentinel/Log Analytics Cost Management and Data Optimization

• Access to Microsoft Sentinel product teams and early features
• Involvement in nation-state attack detection
• Opportunity to develop Sentinel expertise
• Part of a Microsoft Security elite MISA and Depth partner
• Exposure to multi-cloud detection and security automation
• Remote, flexible work culture with global collaboration
• Career growth within a respected security consultancy