Enable job alerts via email!

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Preston

Remote

GBP 70,000 - 85,000

Full time

6 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading Microsoft security consultancy seeks a Senior Microsoft Sentinel / SIEM Engineer to enhance log onboarding and develop tailored SIEM solutions. The role offers involvement in complex integration projects and access to Microsoft's security roadmap, perfect for individuals looking to deepen their expertise in a flexible, remote working environment.

Benefits

Access to Microsoft Sentinel product teams and early features

Involvement in nation-state attack detection

Opportunities to develop Sentinel expertise

Remote, flexible work environment

Career growth within a respected security consultancy

Qualifications

Experience with Microsoft Sentinel at SMC and enterprise levels.
Knowledge of security telemetry across identity, endpoint, cloud, and network.
Scripting skills in Python and PowerShell.

Responsibilities

Own and optimise enterprise-wide log onboarding into Microsoft Sentinel.
Deploy connectors, Function Apps, and parsers for tailored SIEM solutions.
Manage log ingestion across hybrid and multi-cloud environments.

Skills

Microsoft Sentinel

SIEM content development

Python

PowerShell

REST APIs

Log ingestion

Social network you want to login/join with:

Senior Microsoft Sentinel / SIEM Engineer, Preston, Lancashire

Client: Cloud Decisions

Location: Preston, Lancashire, United Kingdom

Job Category: Other

EU work permit required: Yes

Job Views: 3

Posted: 31.05.2025

Expiry Date: 15.07.2025

Job Description:

Job Title: Senior Microsoft Sentinel / SIEM Engineer

Salary: Up to £85,000 + Benefits + Microsoft

Location: Fully Remote, UK

Company: Global Microsoft Managed MISA Partner

Role Overview:

This is an exciting opportunity for a Microsoft Sentinel expert to join a global security Microsoft partner, working on complex Sentinel engineering and integration projects, with access to Microsoft’s security roadmap and support.

The Role:

Own and optimise enterprise-wide log onboarding into Microsoft Sentinel
Deploy connectors, Function Apps, and parsers for tailored SIEM solutions
Manage log ingestion across hybrid and multi-cloud environments
Enhance custom Function Apps and ingestion pipelines
Partner with IR teams on real attacks and tune rules accordingly
Collaborate with Microsoft teams to develop detection capabilities
Contribute to internal knowledge base and engineering standards

Requirements:

Experience with Microsoft Sentinel at SMC and enterprise levels
Knowledge of security telemetry across identity, endpoint, cloud, and network
Skills in SIEM content development, KQL, analytics rules, and custom data connectors
Scripting skills: Python, PowerShell, APIs, Function Apps
Background in cyber threat detection, incident response, or DFIR is a plus
Ability to work in fast-paced, customer-facing environments

Technical Skills:

PowerShell, Python, REST APIs
Log ingestion and parsing across Azure, AWS, GCP, M365, Defender, Entra, Copilot, Carbon Black, Okta, and network vendors
Knowledge of MITRE ATT&CK, threat frameworks, IOC enrichment
Problem-solving skills
Sentinel/Log Analytics Cost Management and Data Optimization

Benefits:

Access to Microsoft Sentinel product teams and early features
Involvement in nation-state attack detection
Opportunities to develop Sentinel expertise
Part of a Microsoft Security MISA and Depth partner
Exposure to multi-cloud detection and security automation
Remote, flexible work environment
Career growth within a respected security consultancy

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.