Position:
Full-Time Location:
Remote Start Date:
ASAP
Nationality:
Any
Windows Management Experts (WME) is looking for a Microsoft Sentinel Consultant Role for one of our valued clients. This is a mid-level position within the Sentinel team at our client organization. The selected candidate will implement and configure Microsoft Sentinel, a cloud-native Security Information and Event Management (SIEM) solution, to collect, aggregate, and analyze security events from various sources.
This is a massive E5 project for our client as they are moving from Splunk to Sentinel. There are about 140 automations to cut over and the main thing they are looking for is experience with Defender for Identity and Defender for Office.
That said, you will be responsible for providing expert advice and guidance to clients or within their organization. You will assess security risks and develop security strategies for the organization. That said, you will implement Sentinel security solutions and provide recommendations for improving security posture.
This job requires several years of experience in cybersecurity or related fields. You will be tasked to engage directly with clients and recommend custom solutions. That said, you will solve complex security challenges and make strategic decisions. We also require Project Management skills to oversee security projects.
All in all, WME is looking for some exceptional communication and interpersonal skills in our new team member. The candidate’s toolbox must be diverse & complete. From being technically savvy to displaying a vigorous passion for learning beyond their traditional areas of expertise, the resource must prove to be an asset to the company.
Note: The selected candidate will work 40 hours/week.
Required Skills/Qualifications/Education:
- Bachelor’s degree in Computer Science or equivalent experience.
- 1-3 years of professional experience with Sentinel.
- Plus: certifications like Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), etc.
- Deep understanding of Microsoft Sentinel architecture i.e. workspaces, playbooks, and hunting queries.
- Ability to create and manage security incidents, alerts, and rules in Microsoft Sentinel to detect, triage, and respond to security events.
- Experience with creating and customizing playbooks in Microsoft Sentinel to automate security response actions.
- Experience with Azure Sentinel incident management and tracking i.e. incident escalation, assignment, and resolution.
- Proficient in using Azure Monitor and Azure Security Center in conjunction with Microsoft Sentinel for comprehensive security monitoring.
- Ability to create and manage security baselines, customized analytics, and alert suppression rules in Sentinel.
- In-depth knowledge of cybersecurity principles, tools, and technologies.
- Strong problem-solving and critical thinking skills to assess complex security challenges.
- Excellent communication and interpersonal skills.
- Familiarity with regulatory compliance requirements relevant to the industry (e.g., GDPR, HIPAA).
- Project management skills will be a plus.
- Ability to perform security assessments and recommend appropriate solutions.
- A client-centric approach with the ability to understand and address specific client needs and concerns.
- Capable of developing and implementing security strategies aligned with business objectives.
Responsibilities of the Desired Microsoft Sentinel Consultant Role:
- Troubleshoot technical issues including investigating and resolving data ingestion failures, query performance issues, and other operational challenges.
- Design and implement custom dashboards, visualizations, and reports in Microsoft Sentinel to provide meaningful insights into security events and incidents.
- Conduct comprehensive security assessments to identify vulnerabilities and risks.
- Design custom security solutions to address client-specific needs and vulnerabilities.
- Participate in incident response and forensics investigations using Microsoft Sentinel, including conducting deep-dive analysis of security incidents, documenting findings, etc.
- Collaborate with Microsoft support and engineering teams to escalate and resolve technical issues related to Microsoft Sentinel, including providing feedback on product improvements and participating in beta testing programs.
- Develop security policies and procedures to enhance security postures.
- Assist in incident response efforts, including forensics, containment, and recovery.
- Engage directly with clients, building strong client relationships.
- Ensure that client environments comply with relevant industry regulations and standards.
- Provide clear and concise reports on security assessments, vulnerabilities, etc.
- Provide technical guidance and support to other members of the security team.
- Stay up to date with the latest threat intelligence, security trends, and Microsoft Sentinel updates.
Core Values:
- Integrity (Doing What’s Right)
- Inclusion (Encouraging Diversity)
- Teamwork (Working Together)
- Excellence (Being Your Best)
- Accountability (Taking Personal Responsibility)
Disclaimer
All the qualified applicants will receive due consideration for employment without any regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.