Enable job alerts via email!
SIEM Automation Engineer
context recruitment
Leeds
Remote
GBP 50,000 - 60,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
Join a leading Microsoft MSSP as a SIEM Automation Engineer, where you'll enhance security operations through automation and optimization. Collaborate with a skilled SOC team to develop automated workflows and improve threat detection strategies, ensuring robust protection for clients' data and infrastructure. This remote role offers a competitive salary package up to £65,000.
Qualifications
- Proven experience with Microsoft Sentinel and Defender for Endpoint.
- Strong proficiency in KQL for threat hunting.
- Knowledge of SIEM automation and integrations.
Responsibilities
- Design and implement automation workflows in Microsoft Sentinel.
- Monitor and respond to security incidents.
- Conduct threat hunting and forensic investigations.
Skills
Job description
SIEM Automation Engineer - Leading Microsoft MSSP
An opportunity to work with one of the top 1% Microsoft MSSPs globally, where cutting-edge security solutions meet expert cyber defense.With a 16-person SOC team, this role offers the chance to automate, optimize, and strengthen security operations at scale.
A key position within a world-class MSSP, leveraging Microsoft Sentinel, Defender for Endpoint, and KQL to enhance threat detection, response, and security automation.Responsibilities include developing automated security workflows, streamlining investigations, and advancing proactive defense strategies.
Key Responsibilities:
- Design and implement automation workflows within Microsoft Sentinel for enhanced security operations.
- Monitor and respond to security incidents and alerts, ensuring the protection of our clients' data and infrastructure.
- Conduct in-depth threat hunting and forensic investigations using KQL.
- Optimize security processes with Defender for Endpoint to detect, contain, and remediate threats.
- Collaborate with security analysts, engineers, and SOC teams to develop automated responses to cyber threats.
- Continuously improve security monitoring strategies and contribute to the overall SIEM architecture.
Experience required:
- Proven experience working with Microsoft Sentinel and Defender for Endpoint.
- Strong proficiency in KQL for deep threat hunting and security analytics.
- Knowledge of SIEM automation, playbooks, and integrations.
- Experience in cybersecurity operations, threat detection, and incident response.
- Passion for security automation and proactive cyber defense strategies.
Paying up to 60k + on-call (65k total package)
Remote based.
Must be eligible for SC
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Similar jobs
PLC Automation Engineer
Mase Consulting Ltd
Manchester
Remote
GBP 45.000 - 60.000
PLC Automation Engineer
ZipRecruiter
Manchester
Remote
GBP 45.000 - 60.000
Platform Engineer - Fully Remote
Whatsoninleeds
Leeds
Remote
GBP 55.000 - 65.000
Test Automation Engineer (Cypress) (remote UK)
Thermo Fisher Scientific
Remote
GBP 40.000 - 60.000
job faster
