Detection Security Engineer (Microsoft Sentinel and Defender Specialist)

  • icon job experience 2 - 5 Years
  • icon job opening 2 Openings
  • icon salary Not Disclosed
  • icon job location Pune
  • icon job posting Posted 8 days ago
  • Online interview Online interview
Key Skills

KQL (Kusto Query Language) Microsoft Security Stack Expertise Automation and Playbook Development Threat Intelligence: Experience With MITRE ATT&CK MISP TAXII Frameworks

Job Description

We are seeking a highly skilled Detection Security Engineer with expertise in Microsoft Sentinel, Defender, and related security technologies. The ideal candidate will possess strong analytical and technical skills, demonstrating the ability to manage, optimize, and enhance our organization's security infrastructure while ensuring incident detection and response capabilities.

________________________________________

Key Responsibilities:

1. Log and Incident Management:

o Review logs for suspicious activity and implement suppression rules for incoming logs and incidents.

o Analyze security breaches to determine root causes and implement mitigation strategies.

o Organize and prioritize incident queues for effective incident management under a 24/7 SLA.

2. KQL and Data Analysis:

o Develop advanced KQL (Kusto Query Language) queries for threat hunting and analytics.

o Create and manage Workbooks for data visualization and insights.

3. Automation and Playbooks:

o Design and implement Automation Rules and Playbooks to streamline incident response processes.

o Continuously update incident response plans, threat vulnerability management strategies, and automation rules.

4. Microsoft Security Stack:

o Configure and administer Microsoft SIEM solutions, including Azure Sentinel, Microsoft 365 Defender, Microsoft Defender for Identity, Endpoint Manager, and Defender for Cloud Apps.

o Manage devices, apply security policies, and create configuration profiles.

o Design and enforce conditional access policies and oversee OS/software upgrades using MEM.

5. Incident Response and Mitigation:

o Quickly analyze incident details (., affected systems, logs, files, IP addresses, domains, user accounts).

o Perform both automated and manual containment and mitigation activities.

o Provide technical support and troubleshooting for customers using Microsoft Security Stack.

6. Threat Intelligence and Mitigation:

o Utilize MITRE ATT&CK, MISP, and TAXII for threat intelligence and integration
  • Experience

    2 - 5 Years

  • No. of Openings

    2

  • Education

    B.C.A, B.Sc, B.Tech, Post Graduate Diploma, M.C.A, M.Sc, M.Tech

  • Role

    Detection Security Engineer

  • Industry Type

    IT-Hardware & Networking / IT-Software / Software Services

  • Gender

    [ Male / Female ]

  • Job Country

    India

  • Type of Job

    Full Time

  • Work Location Type

    Work from Home

About Finapinc

Welcome to FINAP, a leading provider of ServiceNow solutions. With over 3 years of experience in the industry, we have established ourselves as experts in the field of ServiceNow.
Read More...
Similar Jobs
Apply Now

Register to Get Relevant Jobs

Get Noticed By Top Recruiters

Become a Premium Job Seeker

  • Higher Boosting
  • Resume Highlighter
  • Verified Stamp
  • Resume Exposure

499/- for 3 months

Pay Now

We use cookies to improve your experience. By continuing to browse the site, you agree to our Privacy Policy Terms & Conditions [Seeker]

Got it