Enable job alerts via email!
Senior Microsoft Sentinel / SIEM Engineer
JR United Kingdom
Slough
Remote
GBP 70,000 - 85,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
A leading consultancy is seeking a Senior Microsoft Sentinel / SIEM Engineer to join their fully remote team in the UK. This role provides a unique opportunity to work with cutting-edge security technologies and contribute to defenses against advanced cyber threats. The position requires in-depth technical expertise in Microsoft Sentinel, including integration, log ingestion, and developing security solutions that enhance threat detection and incident response. Candidates should be skilled in Python and PowerShell and capable of navigating high-stakes customer environments.
Benefits
Qualifications
- Experience with Microsoft Sentinel and SIEM solutions at enterprise levels.
- Understanding of security telemetry across various layers.
- Knowledge of scripting languages like Python and PowerShell is essential.
Responsibilities
- Own and optimize log onboarding into Microsoft Sentinel.
- Enhance custom Function Apps and ingestion pipelines.
- Collaborate with teams on advanced detection capabilities.
Skills
Tools
Job description
Social network you want to login/join with:
Client: Cloud Decisions
Location: Slough, United Kingdom
Job Category: Other
EU work permit required: Yes
Job Title: Senior Microsoft Sentinel / SIEM Engineer
Salary: Up to £85,000 + Benefits + Microsoft
Location: Fully Remote, UK
Company: Global Microsoft Managed MISA Partner
This is a standout opportunity for a Microsoft Sentinel expert to step into a high-impact, technically advanced role with a global security Microsoft powerhouse.
You'll be joining a Microsoft managed global partner, a prominent MISA member, a team with Security MVPs, and a Microsoft Verified Safe XDR Solution Partner, and a trusted Security Depth Partner.
In short, giving you unparalleled access to Microsoft’s security product roadmap, security previews, and frontline support.
You'll work at the forefront of cyber defence, directly contributing to investigations involving nation-state threat actors (including IR, CH, and NK based campaigns) while refining your skills across enterprise-scale log ingestion and customised Sentinel integration engineering. This role offers opportunities to ingest complex logs from various cloud and data sources and to learn and adapt as you go.
You'll own and optimise enterprise-wide log onboarding into Microsoft Sentinel – deploying standard and custom connectors, Function Apps, and parsers to build tailored SIEM solutions that enhance threat detection and response.
- Log ingestion at scale across hybrid and multi-cloud environments
- Enhance custom Function Apps and ingestion pipelines
- Parse, normalise, and optimise log telemetry for precision and cost efficiency
- Partner with IR teams on real attacks, tuning rules against live threat actor activity
- Collaborate with Microsoft teams to develop advanced detection capabilities
- Contribute to internal knowledge bases and engineering standards
- Experience building and integrating complex Microsoft Sentinel solutions at SMC and enterprise levels
- Understanding of security telemetry across identity, endpoint, cloud, and network layers
- Experience in SIEM content development, including KQL, analytics rules, and custom data connectors
- Scripting and engineering skills: Python, PowerShell, APIs, Function Apps
- Background in cyber threat detection, incident response, or DFIR is a plus
- Ability to work in fast-paced, customer-facing environments
- PowerShell, Python, REST APIs
- Log ingestion and parsing across platforms (Azure, AWS, GCP, M365, Defender, Entra, Copilot, Carbon Black, Okta, Tier 1 Network vendors)
- MITRE ATT&CK, threat detection frameworks, IOC enrichment
- Problem-solving skills
- Sentinel/Log Analytics Cost Management and Data Optimisation
- Access to Microsoft Sentinel product teams and early feature previews
- Involvement in real-world nation-state attack detection
- Opportunities to enhance your Sentinel expertise
- Part of a Microsoft Security elite MISA and Depth partner
- Exposure to multi-cloud detection and security automation
- Fully remote, flexible work culture with global collaboration
- Recognition, career growth, and development within a respected security consultancy
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Similar jobs
Senior Microsoft Sentinel / SIEM Engineer
JR United Kingdom
Swindon
Remote
GBP 70,000 - 85,000
Senior Microsoft Sentinel / SIEM Engineer
JR United Kingdom
Hounslow
Remote
GBP 70,000 - 85,000
Senior Microsoft Sentinel / SIEM Engineer
JR United Kingdom
Basildon
Remote
GBP 70,000 - 85,000
Senior Microsoft Sentinel / SIEM Engineer
JR United Kingdom
Reading
Remote
GBP 70,000 - 85,000
Senior Microsoft Sentinel / SIEM Engineer
JR United Kingdom
Hemel Hempstead
Remote
GBP 70,000 - 100,000
Senior Microsoft Sentinel / SIEM Engineer
JR United Kingdom
Watford
Remote
GBP 70,000 - 85,000
Senior Microsoft Sentinel / SIEM Engineer
JR United Kingdom
London
Remote
GBP 70,000 - 85,000
job faster
