At a Glance
- Tasks: Design and develop threat detection use cases using Microsoft Sentinel and KQL.
- Company: Join a leading Managed Security Service Provider (MSSP) with a focus on innovation.
- Benefits: Earn £500/day, enjoy hybrid work, and potential contract extensions.
- Other info: Dynamic role with opportunities for professional growth and skill enhancement.
- Why this job: Make a real impact in cyber security while working with cutting-edge technologies.
- Qualifications: Experience with Microsoft Sentinel, KQL, and a background in Security Operations.
Our client is a large MSSP, looking for a skilled Cyber Security Engineer (Threat detection) with strong experience in Microsoft Sentinel, KQL, and Microsoft Defender to support detection engineering, threat monitoring, and security optimization initiatives.
Responsibilities:
- Design and develop high-fidelity threat detection use cases in Microsoft Sentinel
- Write and optimize detection logic using Kusto Query Language (KQL) aligned to real-world attack techniques
- Create new detection rules based on threat intelligence and attack methodologies (MITRE ATT&CK framework preferred)
- Support and execute the rollout of Microsoft Defender solutions, including:
- Managed Defender deployment
- Configuration of Attack Surface Reduction (ASR) rules
- Lead or contribute to the migration of detection rules from Sentinel to Defender, ensuring compatibility and effectiveness
Required Skills & Experience:
- Hands-on experience with Microsoft Sentinel (SIEM) and Microsoft Defender (XDR)
- Strong proficiency in Kusto Query Language (KQL)
- Background working in a Security Operations Center (SOC) or similar environment
- Experience in threat detection, incident analysis, and rule tuning
- Solid understanding of attack techniques, threat vectors, and detection strategies
Preferred Skills:
- Experience working in a Security Operations Centre (SOC) environment
- Knowledge of threat hunting and proactive detection strategies
- Relevant Microsoft security certifications
Cyber Security Engineer/Threat detection engineer- Outside ir35 Contract employer: Careerwise
Join a leading Managed Security Service Provider (MSSP) that prioritises employee growth and innovation in the dynamic field of cyber security. With a hybrid working model, you will enjoy the flexibility of mostly remote work while having the opportunity to collaborate with a talented team in Birmingham when needed. The company fosters a culture of continuous learning and offers competitive rates, making it an excellent choice for professionals seeking meaningful and rewarding employment in a supportive environment.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Engineer/Threat detection engineer- Outside ir35 Contract
✨Tip Number 1
Network like a pro! Reach out to your connections in the cyber security field, especially those who work with Microsoft Sentinel or in SOCs. A friendly chat can lead to insider info about job openings that might not even be advertised yet.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your experience with KQL and threat detection use cases. This can be a game-changer during interviews, as it gives potential employers a clear view of what you can bring to the table.
✨Tip Number 3
Prepare for the interview by brushing up on the MITRE ATT&CK framework and recent attack techniques. Being able to discuss these topics confidently will show that you're not just knowledgeable but also passionate about cyber security.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities that match your skills. Plus, applying directly can sometimes give you an edge over other candidates. Let’s get you that contract!
We think you need these skills to ace Cyber Security Engineer/Threat detection engineer- Outside ir35 Contract
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your experience with Microsoft Sentinel, KQL, and Microsoft Defender. We want to see how your skills align with the job description, so don’t be shy about showcasing your relevant projects and achievements!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re the perfect fit for the Cyber Security Engineer role. Mention specific experiences that relate to threat detection and your familiarity with the MITRE ATT&CK framework.
Showcase Your Problem-Solving Skills:In your application, highlight instances where you've tackled complex security challenges. We love seeing how you approach problem-solving, especially in a SOC environment, so share those stories!
Apply Through Our Website:Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it makes the whole process smoother for everyone involved.
How to prepare for a job interview at Careerwise
✨Know Your Tools Inside Out
Make sure you’re well-versed in Microsoft Sentinel and Microsoft Defender. Brush up on your KQL skills, as you'll likely be asked to demonstrate your ability to write and optimise detection logic during the interview.
✨Familiarise Yourself with MITRE ATT&CK
Since the job involves creating detection rules based on attack methodologies, it’s crucial to understand the MITRE ATT&CK framework. Be prepared to discuss how you’ve applied this knowledge in previous roles or projects.
✨Showcase Your SOC Experience
If you've worked in a Security Operations Centre, highlight specific examples of threat detection and incident analysis you've conducted. This will show that you have practical experience in a relevant environment.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions where you might need to explain how you would handle certain threats or incidents. Think through some real-world examples and be ready to articulate your thought process clearly.
