Azure Sentinel Security Engineer - SIEM Tools (3-6 yrs)

Job Title :

Azure Sentinel Security Engineer. Experience: 3-6 Years.

Location : Bengaluru, Karnataka.

Job Description :

We are seeking a skilled Azure Sentinel Security Engineer to join our team. The ideal candidate will have hands-on experience with Microsoft security tools, strong scripting capabilities, and a deep understanding of cloud security practices.

Key Responsibilities :

- Deploy, configure, and manage Azure Sentinel workspaces.

- Design and implement data connectors to ingest logs and events from various sources (Azure, on-premises, third-party).

- Develop and customize Azure Sentinel analytics rules, workbooks, and playbooks.

- Configure and manage threat intelligence feeds within Azure Sentinel.

- Monitor security alerts and incidents generated by Azure Sentinel.

- Investigate security incidents and perform root cause analysis.

- Develop and implement incident response procedures and playbooks.

- Collaborate with security teams and other stakeholders to respond to security incidents.

- Utilize KQL to effectively query logs.

- Develop and refine Azure Sentinel analytics rules to detect advanced threats.

- Perform threat hunting and proactive security monitoring.

- Analyze security logs and events to identify suspicious activities.

- Stay up-to-date on the latest security threats and vulnerabilities.

- Automate security tasks and incident response workflows using Azure Logic Apps and playbooks.

- Integrate Azure Sentinel with other security tools and platforms.

- Develop and maintain automation scripts and tools.

- Create and maintain comprehensive documentation of Azure Sentinel configurations and procedures.

- Generate security reports and dashboards for management and stakeholders.

- Document incident response activities and lessons learned.

- Identify and implement opportunities to improve security monitoring and incident response processes.

- Evaluate and recommend new security tools and technologies.

- Participate in security audits and compliance assessments.

Technical Skills & Qualifications :

- 3 - 6 years of experience in security engineering or related fields.

- Strong hands-on experience with Azure Sentinel.

- Proficiency in Kusto Query Language (KQL).

- Experience with Azure cloud services, including Azure Active Directory, Azure VMs, and Azure networking.

- Understanding of security concepts, including SIEM, SOAR, threat intelligence, and incident response.

- Experience with scripting languages (PowerShell, Python) is a plus.

- Knowledge of security frameworks and standards (NIST, CIS).

- Excellent troubleshooting and problem-solving skills.

- Strong communication and interpersonal skills.