Detection Security Engineer (Microsoft Sentinel and Defender Specialist)

Finapinc

1 - 4 Years
1 Openings
Not Disclosed
Pune
Posted 5 days ago
Online interview

Key Skills

KQL (Kusto Query Language) Azure Sentinel Microsoft 365 Defender Microsoft Defender For Identity Microsoft Endpoint Manager Microsoft Defender For Cloud Apps. Automation and Playbook Development MITRE ATT&CK MISP TAXII Frameworks.

Apply

Job Alert Similar Jobs Share

Job Description

We are seeking a highly skilled Detection Security Engineer with expertise in Microsoft Sentinel, Defender, and related security technologies. The ideal candidate will possess strong analytical and technical skills, demonstrating the ability to manage, optimize, and enhance our organization's security infrastructure while ensuring incident detection and response capabilities.

________________________________________

Key Responsibilities:

1. Log and Incident Management:

o Review logs for suspicious activity and implement suppression rules for incoming logs and incidents.

o Analyze security breaches to determine root causes and implement mitigation strategies.

o Organize and prioritize incident queues for effective incident management under a 24/7 SLA.

2. KQL and Data Analysis:

o Develop advanced KQL (Kusto Query Language) queries for threat hunting and analytics.

o Create and manage Workbooks for data visualization and insights.

3. Automation and Playbooks:

o Design and implement Automation Rules and Playbooks to streamline incident response processes.

o Continuously update incident response plans, threat vulnerability management strategies, and automation rules.

4. Microsoft Security Stack:

o Configure and administer Microsoft SIEM solutions, including Azure Sentinel, Microsoft 365 Defender, Microsoft Defender for Identity, Endpoint Manager, and Defender for Cloud Apps.

o Manage devices, apply security policies, and create configuration profiles.

o Design and enforce conditional access policies and oversee OS/software upgrades using MEM.

5. Incident Response and Mitigation:

o Quickly analyze incident details (., affected systems, logs, files, IP addresses, domains, user accounts).

o Perform both automated and manual containment and mitigation activities.

o Provide technical support and troubleshooting for customers using Microsoft Security Stack.

6. Threat Intelligence and Mitigation:

o Utilize MITRE ATT&CK, MISP, and TAXII for threat intelligence and integration

Experience
1 - 4 Years
No. of Openings
1
Education
B.C.A, M.C.A, M.Sc, MVSC, Any Master Degree
Role
Detection Security Engineer
Industry Type
IT-Hardware & Networking / IT-Software / Software Services
Gender
[ Male / Female ]
Job Country
India
Type of Job
Full Time
Work Location Type
Work from Home

About Finapinc

Welcome to FINAP, a leading provider of ServiceNow solutions. With over 3 years of experience in the industry, we have established ourselves as experts in the field of ServiceNow.

Register to Get Relevant Jobs

Your Mobile Number

I agree to the Terms and Conditions

Get Noticed By Top Recruiters

Become a Premium Job Seeker

Higher Boosting
Resume Highlighter
Verified Stamp
Resume Exposure

499/- for 3 months

Pay Now

Similar Jobs