Senior Microsoft Sentinel / SIEM Engineer

Social network you want to login/join with:

Client: Cloud Decisions

Location: Sheffield, South Yorkshire, United Kingdom

Job Category: Other

EU work permit required: Yes

3

31.05.2025

15.07.2025

Job Title: Senior Microsoft Sentinel / SIEM Engineer

Salary: Up to £85,000 + Benefits + Microsoft

Location: Fully Remote, UK

Company: Global Microsoft Managed MISA Partner

Overview: This is a high-impact, technically advanced role with a global security Microsoft powerhouse. You'll join a Microsoft managed global partner, a prominent MISA member, and work alongside Security MVPs and a Microsoft Verified Safe XDR Solution Partner. This role offers access to Microsoft’s security roadmap, previews, and frontline support.

Responsibilities:

• Own and optimize enterprise-wide log onboarding into Microsoft Sentinel, deploying connectors, Function Apps, and parsers for threat detection and response.
• Manage log ingestion across hybrid and multi-cloud environments.
• Enhance custom Function Apps and ingestion pipelines.
• Parse, normalize, and optimize log telemetry for accuracy and cost-efficiency.
• Partner with IR teams during real attacks, tuning rules based on live threat activity.
• Collaborate with Microsoft teams to develop detection capabilities.
• Contribute to knowledge base and engineering standards.

Requirements:

• Experience with complex Microsoft Sentinel deployment at SMC and enterprise levels.
• Understanding of security telemetry across identity, endpoint, cloud, and network layers.
• Experience in SIEM content development, including KQL, analytics rules, and data connectors.
• Scripting skills in Python, PowerShell, APIs, and Function Apps.
• Background in cyber threat detection, incident response, or DFIR is advantageous.
• Ability to work in fast-paced, customer-facing environments.

Technical Skills:

• PowerShell, Python, REST APIs.
• Log ingestion and parsing across platforms like Azure, AWS, GCP, M365, Defender, Entra, Copilot, Carbon Black, Okta, and network vendors.
• Knowledge of MITRE ATT&CK, threat detection frameworks, IOC enrichment.
• Problem-solving skills are crucial.
• Experience with Sentinel/Log Analytics cost management and data optimization.

Benefits:

• Access to Microsoft Sentinel product teams and early feature previews.
• Involvement in real-world nation-state attack detection.
• Opportunities to develop Sentinel expertise.
• Part of a Microsoft Security elite MISA and Depth partner.
• Exposure to multi-cloud detection and security automation.
• Remote, flexible work culture with global collaboration.
• Career growth within a respected Microsoft security consultancy.