Enable job alerts via email!

Senior Microsoft Sentinel / SIEM Engineer

JR United Kingdom

Telford

Remote

GBP 70,000 - 85,000

Full time

Yesterday

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company seeks a Senior Microsoft Sentinel / SIEM Engineer to work remotely in the UK. This role involves managing complex security projects, enhancing log integration, and collaborating with Microsoft teams on threat detection. Candidates should have expertise in SIEM content development and experience in cyber threat detection.

Benefits

Access to Microsoft Sentinel product teams

Career growth within Microsoft security consultancy

Flexible, remote working environment

Involvement in nation-state attack detection

Qualifications

Experience with building and integrating Microsoft Sentinel at enterprise levels.
Understanding of security telemetry across identity, endpoint, cloud, and network layers.
Ability to work in fast-paced, customer-facing environments.

Responsibilities

Own and optimise enterprise-wide log onboarding into Microsoft Sentinel.
Deploy connectors and parsers for tailored SIEM solutions.
Work with IR teams on real attacks and tune rules accordingly.

Skills

SIEM content development

Python

PowerShell

APIs

Incident Response

Problem-solving

Tools

Microsoft Sentinel

Azure

AWS

GCP

Job Title:

Senior Microsoft Sentinel / SIEM Engineer, Telford

Client: Cloud Decisions

Location: Telford, United Kingdom

Job Category: Other

EU work permit required: Yes

Job Views: 6

Posted: 06.06.2025

Expiry Date: 21.07.2025

Job Description:

Salary: To £85,000 + Benefits + Microsoft

Remote: Fully Remote, UK

Overview: This is a standout opportunity for a Microsoft Sentinel expert to work with a global security Microsoft powerhouse, involved in complex Sentinel engineering and integration projects.

The Role:

Own and optimise enterprise-wide log onboarding into Microsoft Sentinel
Deploy connectors, Function Apps, and parsers for tailored SIEM solutions
Manage log ingestion across hybrid and multi-cloud environments
Enhance ingestion pipelines and custom Function Apps
Work with IR teams on real attacks and tune rules accordingly
Collaborate with Microsoft teams to develop detection capabilities
Contribute to knowledge bases and engineering standards

Requirements:

Experience with building and integrating Microsoft Sentinel at SMC and enterprise levels
Understanding of security telemetry across identity, endpoint, cloud, and network layers
Skills in SIEM content development, KQL, analytics rules, and custom connectors
Scripting skills in Python, PowerShell, APIs, Function Apps
Background in cyber threat detection, incident response, or DFIR (preferred)
Ability to work in fast-paced, customer-facing environments

Technical Skills:

PowerShell, Python, REST APIs
Log ingestion and parsing across Azure, AWS, GCP, M365, Defender, Entra, Copilot, Carbon Black, Okta, and network vendors
Knowledge of MITRE ATT&CK, threat detection frameworks, IOC enrichment
Problem-solving skills
Sentinel/Log Analytics Cost Management and Data Optimization

Benefits:

Access to Microsoft Sentinel product teams and early feature previews
Involvement in real-world nation-state attack detection
Opportunities to enhance Sentinel skills
Part of Microsoft Security elite MISA and Depth partner network
Exposure to multi-cloud detection and security automation
Flexible, remote working environment
Career growth within a global Microsoft security consultancy

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.