Microsoft Security (Sentinel) Automation & Detection Engineer
Posted Today by Hays Talent Solutions on JobServe
£800 Per day
Inside
Hybrid
Cambridge, UK
Summary: The Microsoft Security (Sentinel) Automation & Detection Engineer role involves delivering Microsoft SIEM detections and security automations within a multinational semiconductor and software design company. The position requires expertise in security operations, incident response, and automation tools, with a focus on improving the efficiency of Cyber Defence Operations. This is a 6-month contract based in Cambridge, with an immediate start and classified as inside IR35.
Key Responsibilities:
- Lead technical migration of log sources into Microsoft Sentinel SIEM.
- Build security automations, logging, and SIEM detections to enhance Cyber Defence Operation's efficiency and incident response capabilities.
- Design, implement, and maintain automated workflows and playbooks for incident response, threat hunting, cyber threat intelligence, and vulnerability management.
- Collaborate with Cyber Defence Operation analysts to identify and automate repetitive tasks.
- Work with Threat Intelligence, Incident Response, and Attack Surface Management to develop robust SIEM detections.
- Continuously evaluate automation solutions for performance and scalability.
- Collaborate with third-party vendors to leverage automation opportunities and ensure successful integrations.
Key Skills:
- Proficiency in automation and orchestration tools (SOAR platforms, Python, PowerShell, KQL).
- Experience with Microsoft Sentinel log sources and detection implementation.
- Knowledge of Sentinel Content Hub, Analytics, Automation, Azure Event Hub, Logic Apps, and Function Apps.
- At least 5 years of experience in security operations or security software development.
- Solid understanding of security operations, automation processes, detection engineering, and SIEM management.
- Experience with cloud security tools and their integration into SOC operations.
- Vendor-specific certifications for SOAR platforms are desirable.
Salary (Rate): £800
City: Cambridge
Country: UK
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: Mid-Level
Industry: IT