Knowledge, Skills, and Abilities (KSAs)
Knowledge of:
Microsoft Sentinel architecture, SOAR, and UEBA capabilities.
Azure cloud services, Logic Apps, Azure Functions, Event Hubs, Key Vault, and Azure AD.
Security operations processes (triage, threat detection, incident response, threat modeling).
MITRE ATT&CK, NIST CSF, Zero Trust Architecture concepts.
Programming and scripting languages (Python, PowerShell, KQL, C#, JavaScript, or equivalent).
CI/CD pipelines, DevOps practices, and Git-based version control.
API integrations and JSON/YAML structures.
Skills in:
Building Logic App workflows and custom Sentinel automation playbooks.
Writing complex KQL queries for analytics, hunting, and behavioral detection.
Developing custom connectors, data maps, and parsers.
Designing and optimizing UEBA detection models.
Debugging SOAR workflows and resolving integration issues.
Communicating technical information clearly to both technical and non-technical audiences.
Abilities to:
Work independently and take ownership of complex development tasks.
Translate security requirements into scalable technical solutions.
Analyze threat behaviors and develop meaningful detections.
Work collaboratively with cybersecurity, infrastructure, and application teams.
Manage multiple work assignments and meet deadlines.
Minimum Requirements:
Required Graduation from an accredited four-year college or university with major coursework in computer science, computer information systems, software engineering, cybersecurity, or a related field.
Required Two (2) years of full-time experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering.
Required Two (2) years of full-time experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering.
Preferred Three (3) or more years of hands-on technical experience with Microsoft Sentinel.
Preferred Experience developing UEBA models, anomaly detection rules, and behavior-based analytics.
Preferred Experience building Security Automation Playbooks (SOAR).
Preferred Microsoft certifications such as: SC-200: Security Operations Analyst, AZ-900 / AZ-104, SC-100 / SC-300
Preferred Experience integrating Sentinel with EDR, IAM, firewalls, and ticketing systems.
Preferred Experience with DevOps pipelines (GitHub, Azure DevOps).
Preferred Experience working in a government, healthcare, or regulatory environment.
...is a Fortune 1000 and Defense News Top 100 manufacturing and engineering innovator that provides safe and effective nuclear solutions for... ...us on LinkedIn , X , Facebook and Instagram . Welding Engineer - BWX Technologies, Inc. - Barberton, Ohio Responsibilities...
We are seeking a highly qualified Senior Systems Engineer to support an Operational Test and Evaluation (OT&E) contract for the U.S. Air Force at Nellis AFB, NV. The ideal candidate will have significant experience in Air Force operational test environments, with expertise...
...company foresters assisting with forestry-related activities. These wildlife and forestry duties may include data collection, habitat... ..., as collaboration and communication are key to achieving our conservation goals. If you are passionate about wildlife conservation, eager...
We are SGS the world's leading testing, inspection and certification company. We are recognized as the global benchmark for sustainability, quality and integrity. Our 99,600 employees operate a network of 2,600 offices and laboratories, working together to enable...
...physician, or nurse; reporting mandated information to the public health department or other designated officials. # Operates and... ...Experience Requirements: Required Minimum Education: ~ Bachelor's Degree from an accredited college or university with course work...