Title: Microsoft Sentinel Security Engineer
Location: Baton Rouge, LA (Initial Remote)
Experience: 14+ Years
Contract: 12+ months
Summary
We are seeking a Microsoft Sentinel expert to design, implement, and optimize our SIEM capabilities in a hybrid cloud environment. You will work closely with the security operations team to build scalable security detection, monitoring, and automation solutions.
Responsibilities
We are seeking a Microsoft Sentinel expert to design, implement, and optimize our SIEM capabilities in a hybrid cloud environment. You will work closely with the security operations team to build scalable security detection, monitoring, and automation solutions.
Responsibilities
- Architect and deploy Microsoft Sentinel solutions tailored to enterprise-scale environments.
- Create and manage data connectors, analytics rules, automation playbooks, and threat hunting queries.
- Develop custom KQL (Kusto Query Language) rules for log correlation and threat detection.
- Integrate Sentinel with third-party platforms (e.g., firewalls, endpoint protection, ticketing systems).
- Conduct continuous improvement of use cases, detection logic, and alert tuning.
- Lead incident triage and post-incident analysis using Sentinel dashboards and workbooks.
- Mentor junior analysts on best practices in cloud SIEM operations.
Required Skills
- Deep hands-on experience with Microsoft Sentinel, Azure Logic Apps, Azure Monitor, and KQL.
- Strong knowledge of cybersecurity frameworks (MITRE Telecommunication&CK, NIST, etc.).
- Solid understanding of Azure infrastructure, networking, and identity services.
- Familiarity with SOAR platforms and security automation.
- Excellent communication and documentation skills.
Preferred Certifications
- Microsoft SC-200: Security Operations Analyst
- Microsoft AZ-500: Azure Security Engineer
- Microsoft Certified: Cybersecurity Architect (SC-100)