Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the management of Microsoft Sentinel and Defender XDR, optimizing security tools for threat detection.
- Company: Join a dynamic team focused on enhancing cybersecurity frameworks and client interactions.
- Benefits: Enjoy opportunities for professional growth, collaboration, and staying ahead in cybersecurity trends.
- Why this job: This role is perfect for detail-oriented individuals eager to innovate in cybersecurity and make an impact.
- Qualifications: Proven experience with Microsoft Sentinel, SIEM design, EDR solutions, and strong communication skills required.
- Other info: Stay informed about the latest security events while collaborating with clients and stakeholders.
The predicted salary is between 43200 - 72000 £ per year.
We are seeking a Security Engineer with a strong focus on managing and optimizing Microsoft Sentinel and Defender XDR products. This role will be pivotal in enhancing our cybersecurity framework by leading the integration and utilization of these key security tools. Responsibilities include designing and optimizing SIEM rules for superior threat detection and incident management, deploying SOAR tools for automated security responses, and ensuring robust API security. The engineer will oversee the performance and security posture of our platforms, customize client reports, automate report delivery to platforms like ServiceNow, and meticulously document security processes. Additionally, the role involves analyzing SOC and SIEM data for actionable insights, creating security dashboards and response runbooks, and participating in client meetings as the primary security contact. Staying informed about the latest security trends and techniques is essential. This position is ideal for a
detail-oriented individual eager to push the boundaries of cybersecurity and enhance client interactions.
Primary Responsibilities
-
Lead the management of Microsoft Sentinel and Defender XDR products, including their integration with existing tools, utilizing them to elevate existing Security Operations
-
Design and optimize SIEM (Security Information and Event Management) rules using FortiSIEM to enhance threat detection and streamline incident response activities
-
Deploy and manage Endpoint Detection and Response (EDR) solutions, specifically FortiEDR, SentinelOne, and Defender for Endpoint to identify and mitigate endpoint threats effectively
-
Design and implement automated security use cases and playbooks to accelerate incident response and remediation
-
Assist in overseeing the implementation and management of API security measures, ensuring secure data transmission and compliance with industry-standard API security protocols
-
Collaborate with clients to understand their reporting needs and requirements and customize reports accordingly
-
Develop, maintain, and automate client-facing reports using our existing security tools. These reports should effectively articulate incident metrics and trends to both technical and non-technical audiences. This role also includes automating the upload of these reports to the ServiceNow client portal
-
Create and maintain materials documenting our security processes, procedures, and technologies, along with the generation of automated reports for relevant stakeholders
-
Provide expert guidance on alarm tuning and configuration tasks necessary for Security Service deployment to new and existing customers
-
Take a proactive role in updating client Security presentations and discuss findings with our clients
-
Perform comprehensive analysis of data from our SOC and SIEM to identify patterns, anomalies, and potential threats
-
Design and implement client reports, dashboards, and metrics, and manage response runbooks and walkthrough documents
-
Stay informed about the latest security events and techniques to enhance our operations and defense strategies
-
Other duties as required
-
Proven experience with Microsoft Sentinel and Defender XDR products
-
Strong background in SIEM rule design and optimization
-
Extensive experience in implementing and overseeing Endpoint Detection and Response (EDR) solutions
-
Experience with SOAR tools and automated security response implementations
-
Familiarity with API security protocols and measures
-
Ability to analyze large amounts of data from various sources to solve complex problems and make informed decisions
-
Proficiency in developing and automating client-facing reports
-
Excellent communication skills for both technical and non-technical audiences
-
Demonstrated understanding of cybersecurity threats and incident response procedures
-
Knowledge of risk assessment tools, technologies, and methods
-
Expertise in computer networking and security
-
Passion for cybersecurity and continuous learning
-
Must be able to work effectively in a team environment and collaborate within the team and with other stakeholders
Security Engineer employer: Thrive
Contact Detail:
Thrive Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Engineer
✨Tip Number 1
Familiarize yourself with Microsoft Sentinel and Defender XDR products. Since these tools are central to the role, having hands-on experience or certifications can significantly boost your chances of standing out.
✨Tip Number 2
Stay updated on the latest trends in cybersecurity, especially regarding SIEM and EDR solutions. Engaging in relevant online communities or forums can provide insights and help you network with industry professionals.
✨Tip Number 3
Prepare to discuss specific examples of how you've designed and optimized SIEM rules or implemented automated security responses in past roles. Real-world scenarios will demonstrate your expertise and problem-solving skills.
✨Tip Number 4
Practice explaining complex security concepts in simple terms. Since you'll be communicating with both technical and non-technical audiences, being able to articulate your thoughts clearly will be a huge asset.
We think you need these skills to ace Security Engineer
Some tips for your application 🫡
Highlight Relevant Experience: Make sure to emphasize your experience with Microsoft Sentinel and Defender XDR products. Detail specific projects or tasks where you managed these tools, showcasing your ability to enhance cybersecurity frameworks.
Showcase Technical Skills: Clearly outline your technical skills related to SIEM rule design, Endpoint Detection and Response (EDR) solutions, and API security measures. Use specific examples to demonstrate your proficiency in these areas.
Tailor Your Application: Customize your CV and cover letter to reflect the responsibilities and requirements listed in the job description. Mention your familiarity with SOAR tools and automated security responses, as well as your ability to analyze SOC and SIEM data.
Communicate Effectively: Since excellent communication skills are essential for this role, ensure that your application clearly conveys your ability to articulate complex security concepts to both technical and non-technical audiences. Provide examples of past experiences where you successfully communicated security findings.
How to prepare for a job interview at Thrive
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with Microsoft Sentinel and Defender XDR products. Highlight specific projects where you designed SIEM rules or implemented EDR solutions, as this will demonstrate your capability to manage and optimize these tools effectively.
✨Demonstrate Problem-Solving Skills
Expect questions that assess your ability to analyze large datasets and identify security threats. Prepare examples of how you've solved complex problems in previous roles, particularly in relation to SOC and SIEM data analysis.
✨Communicate Clearly with Diverse Audiences
Since the role involves creating reports for both technical and non-technical audiences, practice explaining complex security concepts in simple terms. This will show your ability to tailor communication based on the audience's expertise.
✨Stay Updated on Security Trends
Research the latest trends and techniques in cybersecurity, especially those related to API security and automated responses. Being knowledgeable about current events in the field will demonstrate your passion for continuous learning and commitment to enhancing security operations.
