Enable job alerts via email!

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Southampton

Remote

GBP 70,000 - 85,000

Full time

Yesterday
Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company in cybersecurity is seeking a Senior Microsoft Sentinel / SIEM Engineer. This role offers the opportunity to work on high-impact projects, optimize log ingestion into Microsoft Sentinel, and collaborate with security teams on nation-state threat detection. Ideal for experts with extensive experience in security telemetry and log management, this position promises significant career growth and technical exposure in a fully remote environment.

Benefits

Access to Microsoft Sentinel product teams
Opportunity for career growth
Flexible remote work culture

Qualifications

  • Experience with complex Microsoft Sentinel deployment at SMC and enterprise levels.
  • Understanding of security telemetry across identity, endpoint, cloud, and network layers.
  • Skills in SIEM content development: KQL, analytics rules, data connectors.

Responsibilities

  • Own and optimize enterprise-wide log onboarding into Microsoft Sentinel.
  • Deploy standard and custom connectors, Function Apps, and parsers.
  • Collaborate with IR teams on live attacks, tuning rules based on threat activity.

Skills

PowerShell
Python
REST APIs
Problem-solving

Job description

Social network you want to login/join with:

Senior Microsoft Sentinel / SIEM Engineer, Southampton

Client: Cloud Decisions

Location: Southampton, United Kingdom

Job Category: Other

EU work permit required: Yes

Job Views: 5

Posted: 06.06.2025

Expiry Date: 21.07.2025

Job Description:

Job Title: Senior Microsoft Sentinel / SIEM Engineer

Salary: Up to £85,000 + Benefits + Microsoft

Location: Fully Remote, UK

Company: Global Microsoft Managed MISA Partner

Specialization: Complex Sentinel Engineering/Integration

The Opportunity

This is a standout opportunity for a Microsoft Sentinel expert to step into a high-impact, technically advanced role with a global security Microsoft powerhouse.

You'll join a Microsoft managed global partner, a prominent MISA member, a team with Security MVPs, and a Microsoft Verified Safe XDR Solution Partner, gaining access to Microsoft’s security product roadmap, previews, and frontline support.

Work at the forefront of cyber defense, contributing to investigations involving nation-state threat actors (including IR, CH, and NK campaigns), and refining skills in enterprise-scale log ingestion and Sentinel integration engineering, handling complex logs from various cloud and data sources.

The Role
  • Own and optimize enterprise-wide log onboarding into Microsoft Sentinel
  • Deploy standard and custom connectors, Function Apps, and parsers
  • Enhance log ingestion pipelines and custom Function Apps
  • Parse, normalize, and optimize log telemetry for accuracy and cost-efficiency
  • Collaborate with IR teams on live attacks, tuning rules based on threat activity
  • Work closely with Microsoft teams to develop detection capabilities
  • Contribute to internal knowledge base and engineering standards
Requirements
  • Experience with complex Microsoft Sentinel deployment at SMC and enterprise levels
  • Understanding of security telemetry across identity, endpoint, cloud, and network layers
  • Skills in SIEM content development: KQL, analytics rules, data connectors
  • Scripting and engineering skills: Python, PowerShell, APIs, Function Apps
  • Background in threat detection, incident response, or DFIR (a plus)
  • Ability to work in fast-paced, customer-facing environments
Technical Skills
  • PowerShell, Python, REST APIs
  • Log ingestion and parsing across platforms (Azure, AWS, GCP, M365, Defender, Entra, Copilot, Carbon Black, Okta, Network vendors)
  • MITRE ATT&CK, threat detection frameworks, IOC enrichment
  • Problem-solving skills
  • Sentinel/Log Analytics Cost Management and Data Optimization
What’s In It for You?
  • Access to Microsoft Sentinel product teams and early feature previews
  • Involvement in real-world nation-state attack detection
  • Opportunity to enhance Sentinel expertise
  • Part of a Microsoft Security elite MISA and Depth partner
  • Exposure to multi-cloud detection and security automation
  • Flexible, remote work culture with global collaboration
  • Recognition, career growth within a respected security consultancy
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Swindon

Remote

GBP 70,000 - 85,000

6 days ago
Be an early applicant

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Portsmouth

Remote

GBP 70,000 - 85,000

6 days ago
Be an early applicant

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Reading

Remote

GBP 70,000 - 85,000

6 days ago
Be an early applicant

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Bath

Remote

GBP 70,000 - 85,000

6 days ago
Be an early applicant

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Crawley

Remote

GBP 70,000 - 85,000

Today
Be an early applicant

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Stevenage

Remote

GBP 70,000 - 85,000

Today
Be an early applicant

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Exeter

Remote

GBP 65,000 - 85,000

Today
Be an early applicant

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Plymouth

Remote

GBP 72,000 - 85,000

Today
Be an early applicant

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Liverpool

Remote

GBP 70,000 - 85,000

Today
Be an early applicant