TekWissen ® · 21 hours ago
Security Operations Engineer / Microsoft Sentinel Engineer
United States
Contract
Remote
Senior Level
$50/hr - $50/hrTekWissen is a global workforce management provider headquartered in Ann Arbor, Michigan that offers strategic talent solutions to our clients world-wide. They are seeking a Senior Security Operations Engineer with expert level Microsoft Sentinel experience to support SIEM engineering, threat detection development, and overall security operations enhancements.
Information Technology
Hiring Manager
Venkat J Swaroop
Responsibilities
Engineer and tune Microsoft Sentinel across data connectors, analytic rules, content packs, and automation playbooks
Build KQL-based detections, custom analytics, hunting queries, and watchlists
Onboard and maintain SIEM log ingestion pipelines, including unified ingestion of WindowsEvent, SecurityEvent, and NxLog sources
Build and optimize SOAR playbooks via Logic Apps to automate enrichment and incident workflows
Migrate legacy hunting and detection workflows into Sentinel’s Threat Hunting module
Partner with SOC and IR teams to validate detection quality and improve signal fidelity
Conduct advanced threat hunting within Sentinel using KQL and custom workbooks
Convert threat intelligence inputs into actionable Sentinel detections
Identify detection gaps and continuously improve coverage across identity, endpoint, and cloud signals
Review CrowdStrike IOA detections and create complementary Sentinel detections
Integrate CrowdStrike EASM insights into hunting and detection workflows
Support endpoint level engineering tasks related to USB security, SSH visibility, certificate lifecycle, and firewall enforcement
Integrate credential risk signals into Sentinel detections
Build rules to identify abnormal authentication behavior and correlated identity attack patterns
Provide Tier 3 engineering support for Sentinel triggered alerts and endpoint security incidents
Assist with high severity incident investigations requiring deep log correlation
Produce engineering documentation, SOPs, playbooks, runbooks, and onboarding materials
Deliver full knowledge transfer at the conclusion of the contract term
Qualification
Required
Extensive, hands on Microsoft Sentinel engineering experience (not just monitoring)
Strong proficiency in KQL
Experience building analytic rules, hunting queries, automation playbooks, and SIEM data models
Hands on experience with CrowdStrike Falcon (EDR, IOA, EASM, firewall)
Strong understanding of MITRE ATT&CK and modern detection engineering practices
Broad troubleshooting skills across Windows, Linux, identity, and cloud telemetry
Preferred
Experience migrating legacy threat hunting into Sentinel
Experience with identity risk tooling (e.g., compromised credential alerts, IAM signals)
Scripting experience (PowerShell, Python)
Experience supporting OT / factory / production environments
Company
TekWissen ®
Welcome TekWissen, your premier partner in technology consulting, workforce solutions, payroll services, procurement, managed services, global capability centers, and venture capital support, specifically tailored for startups in the human capital sector.
Founded in 2009
1001-5000 employees
H1B Sponsorship
TekWissen ® has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (5)
2024 (18)
2023 (11)
2022 (9)
2021 (16)
2020 (17)
Funding
Current Stage
Late StageLeadership Team
Rajanish Pandey
Client Partnership Manager
Company data provided by crunchbase