Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead a team in developing and optimising Azure Sentinel use cases and playbooks.
- Company: Join CyberProof, a leader in cyber security services, part of the UST Global family.
- Benefits: Enjoy flexible work options, professional development opportunities, and a collaborative culture.
- Why this job: Make a real impact in cyber security while working with top enterprises globally.
- Qualifications: 2-3 years with Azure Sentinel and 5 years in detection engineering or cybersecurity required.
- Other info: Ideal for self-motivated individuals who thrive in dynamic team environments.
The predicted salary is between 48000 - 72000 £ per year.
CyberProof is a cyber security services and platform company whose mission is to help our customers react faster and smarter – and stay ahead of security threats, by creating secure digital ecosystems. CyberProof automates processes to detect and prioritize threats early and respond rapidly and decisively. CyberProof is part of the UST Global family. Some of the world’s largest enterprises trust us to create and maintain secure digital ecosystems using our comprehensive cyber security platform and mitigation services.
We are looking for a UCM Team Lead with expertise in Azure Sentinel to join our Use Case Management team and become a member of our global Security Operations Team.
Main Tasks and Accountabilities
- The position offers a versatile mix of responsibilities, blending technical proficiency with team management and customer relations.
- Understand customer requirements and recommend best practices related to Sentinel solutions.
- Offer consultative advice in security principles and best practices related to Sentinel operations.
- Developing new Sentinel use cases, rules, correlations, dashboards to meet the customer needs.
- Design and document Sentinel architectures to meet the customer needs.
- Assist customer with Sentinel sizing, architectures, and client technical meetings.
- Assist client with technical guidance to configure end log sources in-scope to be logged to the Sentinel.
- Ensure all use cases and playbooks are well-documented, including detailed descriptions, workflow diagrams, and relevant technical configurations.
- Verification of data of log sources in the Sentinel.
- Manage and mentor a team of security engineers focused on creating and optimizing detection rules, use cases, and playbooks within Azure Sentinel.
- Ensure the team adheres to established timelines and delivery expectations for detection use cases and playbook development.
What do we expect from you?
- A minimum of 2 to 3 years of experience with the Azure Sentinel SIEM platform.
- At least 5 years of experience in the fields of detection engineering or cybersecurity research.
- Experience managing technical teams is essential.
- Strong hands-on experience in KQL with writing Use Cases in Sentinel.
- Preferred SIEM vendor certification of administrator.
- Familiarity with different security attack vectors and means of protection.
- Knowledge of common attack frameworks such as MITRE ATT&CK, TTPs, and how they are mapped to detection rules.
- Familiarity with security monitoring, incident detection, and incident response best practices.
- Strong analytical and problem-solving skills.
- Strong communication and collaboration skills, with the ability to work effectively in a team environment.
- Ability to work independently; self-starter/self-motivated.
- University degree in information security or equivalent work experience.
- Relevant certification (e.g., GIAC GSOC, GCFA, CISSP) is an advantage.
Use Case Management Team Lead employer: CyberProof
Contact Detail:
CyberProof Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Use Case Management Team Lead
✨Tip Number 1
Familiarise yourself with Azure Sentinel and its functionalities. Since the role requires expertise in this platform, understanding its features and capabilities will help you demonstrate your knowledge during interviews.
✨Tip Number 2
Brush up on your KQL skills. As writing use cases in Sentinel is a key responsibility, being able to showcase your proficiency in KQL will set you apart from other candidates.
✨Tip Number 3
Prepare to discuss your experience in managing technical teams. Highlight specific examples of how you've led teams in detection engineering or cybersecurity research, as this is essential for the role.
✨Tip Number 4
Stay updated on the latest security attack vectors and frameworks like MITRE ATT&CK. Being knowledgeable about these topics will not only help you in interviews but also show your commitment to the field.
We think you need these skills to ace Use Case Management Team Lead
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience with Azure Sentinel and detection engineering. Use specific examples that demonstrate your technical proficiency and team management skills, as these are crucial for the UCM Team Lead role.
Craft a Compelling Cover Letter: In your cover letter, express your passion for cybersecurity and how your background aligns with CyberProof's mission. Mention your experience in managing technical teams and your familiarity with security attack vectors and frameworks like MITRE ATT&CK.
Showcase Relevant Projects: If you have worked on specific projects involving Azure Sentinel, be sure to detail these in your application. Highlight any use cases, dashboards, or playbooks you developed, as well as the impact they had on previous employers.
Highlight Certifications: List any relevant certifications you hold, such as GIAC GSOC, GCFA, or CISSP. These credentials can set you apart from other candidates and demonstrate your commitment to professional development in the field of cybersecurity.
How to prepare for a job interview at CyberProof
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with Azure Sentinel and KQL. Highlight specific use cases you've developed and how they addressed customer needs, as this will demonstrate your technical proficiency and problem-solving skills.
✨Demonstrate Leadership Skills
Since the role involves managing a team, share examples of how you've successfully led technical teams in the past. Discuss your approach to mentoring and ensuring that your team meets deadlines and delivery expectations.
✨Understand Customer Needs
Familiarise yourself with common customer requirements related to security operations. Be ready to discuss how you would recommend best practices for Sentinel solutions based on these needs, showcasing your consultative skills.
✨Prepare for Scenario-Based Questions
Expect questions that assess your ability to handle real-world security incidents. Prepare to explain how you would design and document Sentinel architectures or respond to specific security threats, using frameworks like MITRE ATT&CK.
