Apply on Employer Site

Now100 · 21 hours ago

Microsoft Sentinel SME

Texas, United States

Contract

Onsite

Mid, Senior Level

Now100 is a company specializing in cybersecurity solutions, and they are seeking a Microsoft Sentinel Subject Matter Expert. The role involves designing, building, and managing a test environment for Microsoft Sentinel and Defender xDR, ensuring seamless integration of logs and compliance with security policies.

ConsultingInformation TechnologyInternet

H1B Sponsor Likely

Hiring Manager

Shiva S

Responsibilities

Collaborate with the relevant security teams to identify all prerequisites for the test environment, including network configurations, accounts, and necessary resources

Provide recommendations for the architecture of the test environment, ensuring it aligns with best practices for Microsoft Sentinel and Defender XDR

Develop a comprehensive deployment strategy for Microsoft Sentinel and Defender XDR, considering scalability and future integration needs

Establish security configurations for Sentinel and Defender XDR, ensuring compliance with organizational policies

Create a high-level deployment plan that incorporates automation scripts to streamline the setup process

Identify any specialized connectors or integrations required for the test environment

Review existing configurations and propose enhancements to optimize performance and security

Create Infrastructure Architecture Diagrams (IADs) for the test environment, detailing the components of Microsoft Sentinel and Defender XDR

Design and implement a data flow process for the secure transfer of data between Microsoft Sentinel and Defender XDR, including mechanisms for data ingestion from various sources, procedures for data validation and integrity checks, and protocols for data retention and removal policies

Define the roles and permissions required for users interacting with the test environment

Configure all necessary prerequisites for the test environment, including network settings, firewall rules, and security measures

Install Microsoft Sentinel and Defender XDR components as per the deployment guide

Configure integration points with existing systems and data sources

Create and test customized data connectors to ensure seamless data flow

Validate the data ingested into Microsoft Sentinel and Defender XDR, ensuring accuracy and completeness

Develop test scenarios to simulate various use cases and failure modes to ensure system resilience

Collaborate with security teams to establish health monitoring mechanisms for ongoing reliability

Create comprehensive documentation for all implemented solutions, detailing architecture, configuration, and operational procedures

Develop troubleshooting guidelines for common issues encountered in the test environment

Provide training sessions for relevant personnel on using and maintaining Microsoft Sentinel and Defender XDR effectively

Collaborate with stakeholders on any additional tasks that may arise during the project

Ensure successful completion of the test environment setup with ongoing operational, technical, or strategic support

Qualification

Microsoft SentinelDefender XDRData integrationNetwork configurationsSecurity configurationsTrainingDocumentationCollaboration

Required

Experience in designing, building, and managing test environments for Microsoft Sentinel and Defender XDR

Knowledge of log integration from Windows, Linux, and on-premises servers

Ability to guide log forwarding to CRIBL, Sentinel Data Lake, and Azure Data Explorer (ADX)

Experience collaborating with security teams to identify prerequisites for test environments

Ability to provide recommendations for architecture aligning with best practices for Microsoft Sentinel and Defender XDR

Experience developing comprehensive deployment strategies considering scalability and future integration needs

Knowledge of establishing security configurations for compliance with organizational policies

Ability to create high-level deployment plans incorporating automation scripts

Experience identifying specialized connectors or integrations required for test environments

Ability to review existing configurations and propose enhancements for performance and security

Experience creating Infrastructure Architecture Diagrams (IADs) for test environments

Ability to design and implement data flow processes for secure data transfer

Knowledge of mechanisms for data ingestion, validation, integrity checks, and retention policies

Ability to define roles and permissions for users interacting with test environments

Experience configuring prerequisites including network settings, firewall rules, and security measures

Ability to install Microsoft Sentinel and Defender XDR components as per deployment guides

Experience configuring integration points with existing systems and data sources

Ability to create and test customized data connectors

Experience validating data ingested into Microsoft Sentinel and Defender XDR

Ability to develop test scenarios for system resilience

Experience collaborating with security teams for health monitoring mechanisms

Ability to create comprehensive documentation for implemented solutions

Experience developing troubleshooting guidelines for common issues

Ability to provide training sessions for personnel on Microsoft Sentinel and Defender XDR

Company

Now100

Now100 offers Oracle solutions, talent augmentation, Microsoft consulting, and cloud migration strategy.

Atlanta, Texas, USA

201-500 employees

https://now100.com

H1B Sponsorship

Now100 has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (1)

Funding

Current Stage

Growth Stage

Company data provided by crunchbase