Mfinite Consulting LLC · 2 days ago

Microsoft Sentinel SIEM Engineer

Annapolis, MD

Full-time

Remote

Mid Level

3+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

Business Consulting and Services

Insider Connection @Mfinite Consulting LLC

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

SIEM Configuration: Design and deploy SIEM resources, configure analytics rules, playbooks, Azure logic apps, and data connectors.

Data Collection and Integration: Identify data sources, ingest system data, develop data ingestion strategies, and implement data normalization processes.

Dashboard and Visualization Development: Design interactive dashboards, reports, and visualizations, present data insights clearly, and create data visuals for SOC display screens.

Search, Queries, and Alerts: Develop and optimize analytics rules, configure alerts for security threats, anomalies, and operational issues.

SIEM App Development: Build custom SIEM apps, collaborate with development teams, and integrate SIEM with other systems and tools.

Security and Compliance: Implement security controls, monitor security-related events, and ensure compliance with regulations and standards.

Performance Optimization: Monitor system performance, troubleshoot issues, and implement optimizations to enhance SIEM efficiency.

Training and Documentation: Train other JIS SOC team members on Microsoft Sentinel best practices, create documentation for configurations, processes, and troubleshooting.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Azure SentinelKusto Query LanguageInformation SecurityMicrosoft Security Operations Analyst Associate certification