Microsoft Security Engineer (Sentinel/XDR/SOAR)

TL;DR

Senior Security Consultant (Cybersecurity): Helping well-known brands get the most from Microsoft’s security stack, designing Sentinel-led detection and response, wiring up smart SOAR playbooks, and shaping XDR strategy. Focus on hands-on, high-impact work with a team that backs experimentation, knowledge-sharing and doing things properly.

Location: Manila

Company

hirify.global is a global cyber security company with 2,000+ colleagues supporting 15,000 customers across the UK, North America, Europe, APAC and the ME.

What you will do

• Build & tune Microsoft Sentinel: data connectors, normalisation, analytics rules, UEBA, watchlists, workbooks and cost-savvy ingestion strategies.
• Orchestrate & automate: create pragmatic SOAR playbooks (Logic Apps/Power Automate) that slash MTTR and remove toil.
• Deploy and optimise Microsoft Defender XDR across endpoints, identity, email and cloud; align detections to MITRE ATT&CK and real threats.
• KQL-led threat hunting, incident triage guidance, detection content packs, purple-team style improvements.
• Advise on Purview information protection & DLP, from policy design to pilot and rollout.
• Coach & mentor junior consultants; share patterns, reusable content and lessons learned.

Requirements

• Proven experience delivering Microsoft security projects: Sentinel (must-have), Defender XDR, SOAR (Logic Apps), and Purview/DLP.
• Comfortable with KQL and scripting (PowerShell); version control with Git.
• A knack for cost optimisation (ingestion, retention, table choices, Basic vs Analytics).
• Solid consulting skills — workshops, architecture reviews, stakeholder management and great written reports.
• Familiarity with control frameworks (ISO 27001, NIST CSF/800-53, PCI DSS, GDPR) and how to evidence them in Microsoft cloud.

Nice to have

• Azure Resource Manager/Bicep or IaC pipelines.
• Entra ID/Conditional Access; Defender for Cloud; Intune; MITRE mapping.
• Incident response exposure.
• Certifications such as SC-200/SC-100, CISSP/CISM, ISO 27001 LA/LI, PCI QSA.

Culture & Benefits

• Pragmatic, collaborative, and growth-oriented environment.
• Access to SMEs across hirify.global and a library of reusable content.
• Flexible and supportive culture that embraces difference.