Knowledge, Skills, and Abilities (KSAs)
Knowledge of:
Microsoft Sentinel architecture, SOAR, and UEBA capabilities.
Azure cloud services, Logic Apps, Azure Functions, Event Hubs, Key Vault, and Azure AD.
Security operations processes (triage, threat detection, incident response, threat modeling).
MITRE ATT&CK, NIST CSF, Zero Trust Architecture concepts.
Programming and scripting languages (Python, PowerShell, KQL, C#, JavaScript, or equivalent).
CI/CD pipelines, DevOps practices, and Git-based version control.
API integrations and JSON/YAML structures.
Skills in:
Building Logic App workflows and custom Sentinel automation playbooks.
Writing complex KQL queries for analytics, hunting, and behavioral detection.
Developing custom connectors, data maps, and parsers.
Designing and optimizing UEBA detection models.
Debugging SOAR workflows and resolving integration issues.
Communicating technical information clearly to both technical and non-technical audiences.
Abilities to:
Work independently and take ownership of complex development tasks.
Translate security requirements into scalable technical solutions.
Analyze threat behaviors and develop meaningful detections.
Work collaboratively with cybersecurity, infrastructure, and application teams.
Manage multiple work assignments and meet deadlines.
Minimum Requirements:
Required Graduation from an accredited four-year college or university with major coursework in computer science, computer information systems, software engineering, cybersecurity, or a related field.
Required Two (2) years of full-time experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering.
Required Two (2) years of full-time experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering.
Preferred Three (3) or more years of hands-on technical experience with Microsoft Sentinel.
Preferred Experience developing UEBA models, anomaly detection rules, and behavior-based analytics.
Preferred Experience building Security Automation Playbooks (SOAR).
Preferred Microsoft certifications such as: SC-200: Security Operations Analyst, AZ-900 / AZ-104, SC-100 / SC-300
Preferred Experience integrating Sentinel with EDR, IAM, firewalls, and ticketing systems.
Preferred Experience with DevOps pipelines (GitHub, Azure DevOps).
Preferred Experience working in a government, healthcare, or regulatory environment.
Launch Your Next Successful Chapter with Veta Virtual! Are you the organized, detail-loving powerhouse every busy team dreams of? Veta Virtual is looking for a proactive, resourceful Administrative/Executive Assistant to help our clients stay ahead, from managing calendars...
* A Cook is responsible for providing exceptional guest service while working closely with the Restaurant Managers and other Team Members... ...over the years, weve never been afraid to innovate, adding a breakfast menu, chicken sandwiches, hot dogs, milkshakes (and more) to...
...Insurance Field Inspector Nashville & Surrounding We are a regional insurance inspection firm servicing the southeastern United States. At the request of a few clients we have expanded into the state of TN. We are currently looking for representation based in the surrounding...
...Location: Steamboat Springs, Colorado Website: The City of Steamboat Springs is seeking seasonal Bus Drivers: $21.34/hour; paid CDL training, employee housing, and bonuses! IMPORTANT NOTE: Please complete all application fields. This position is located at: 1463 1...
...Door-to-Door Sales Rep/Project Manager Earn $150K+ in Year One! Hate sitting at a desk? Love winning? At Heritage Roofing & Construction... ...uncapped . Top reps earn $500K+! Paid training no experience needed. Bonuses & prizes sales contests, trips, and...