Plus
Включить Plus
Назад
Company hidden
3 дня назад

Security Engineer (Microsoft Sentinel)

Формат работы
hybrid
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
UK
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Security Engineer (Microsoft Sentinel): Designing, operating, and scaling enterprise SIEM platforms to support 24x7 Security Operations with an accent on log ingestion pipelines, normalization, and detection content support. Focus on optimizing platform health, automating operational tasks, and integrating security telemetry across cloud and on-prem environments.

Location: Hybrid role based in London, UK

Company

hirify.global is a global fintech leader providing technology-driven solutions for financial services, focused on empowering associates and fostering a collaborative, inclusive environment.

What you will do

  • Engineer and optimize Microsoft Sentinel across multiple Log Analytics workspaces.
  • Design and maintain scalable log ingestion pipelines including parsing, normalization, and enrichment.
  • Monitor platform health, ingestion latency, and connector performance to ensure SOC visibility.
  • Onboard diverse data sources from cloud, on-prem, and SaaS environments.
  • Develop integrations between SIEM and security platforms like SOAR, EDR, and Threat Intel.
  • Support M&A security onboarding by integrating acquired environments into the enterprise SIEM.

Requirements

  • 5+ years of experience in SIEM Engineering, Security Operations, or SOC Platform roles.
  • Strong hands-on experience with enterprise SIEM platforms, preferably Microsoft Sentinel.
  • Deep understanding of log formats, schemas, parsing, and normalization techniques.
  • Proficiency in scripting languages such as Python, SPL, or KQL for automation.
  • Solid foundation in networking, authentication, and security fundamentals.
  • Must be able to work in a hybrid capacity from the London office.

Nice to have

  • Experience optimizing SIEM performance, scalability, and cost management.
  • Background in SOAR and automated response workflows.
  • Familiarity with Infrastructure as Code for SIEM infrastructure.
  • Experience working in regulated or financial services environments.

Culture & Benefits

  • Commitment to a collaborative, engaging, and inclusive workplace culture.
  • Focus on professional development and career growth.
  • Hybrid work model balancing in-person collaboration with flexibility.
  • Emphasis on associate well-being and a supportive community environment.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →