At a Glance
- Tasks: Join us to enhance security operations through automation and detection engineering.
- Company: Be part of a leading multinational semiconductor and software design company.
- Benefits: Enjoy hybrid working, competitive pay, and opportunities for professional growth.
- Other info: This is a 6-month contract role based in Cambridge, inside IR35.
- Why this job: Make a real impact in cybersecurity while collaborating with top professionals in the field.
- Qualifications: 5+ years in security operations; expertise in Microsoft Sentinel and automation tools required.
The predicted salary is between 48000 - 72000 £ per year.
A multinational semiconductor and software design company seeks a Microsoft Security (Sentinel) Automation & Detection Engineer for a 6-month contract to start ASAP, based in Cambridge (Hybrid), Inside IR35.
Role Overview: Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of Microsoft SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell, KQL) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment.
Key Skills and Experience:
- Experience contributing to large-scale, sprint-based, security automation and detection engineering projects in a SOC/ Cyber Defence or similar environment.
- Recent hands-on experience with managing and implementing Microsoft Sentinel log sources and detection, with knowledge of the related technical best practices in Sentinel and Azure specifically across Sentinel Content Hub, Sentinel Analytics, Sentinel Automation, Azure Event Hub, Azure Logic Apps, Azure Function Apps.
- Experience in Sentinel/Analytics Rules/Logic App automations.
- KQL.
- Demonstrated ability in cybersecurity, with at least 5 years in a technical role in security operations and/or security software development.
- Solid understanding of security operations, automations standard processes, detection engineering and SIEM management.
- Experience with cloud security tools and platforms and their integration into SOC operations.
Responsibilities:
- Lead technical migration of log sources into Microsoft Sentinel SIEM.
- Build security automations, logging, and SIEM detections to improve the Cyber Defence Operation’s efficiency, scalability, and incident response capabilities.
- Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat intelligence and vulnerability management.
- Collaborate with Cyber Defence Operation analysts to identify repetitive tasks and automate them to improve operational efficiency.
- Collaborate with Threat Intelligence, Incident Response, and Attack Surface Management to build and tune robust SIEM detections for both proactive and reactive response actions.
- Continuously evaluate automation solutions for performance, reliability, and scalability, making improvements, as necessary.
- Collaborate with third-party vendors and service providers to leverage automation opportunities and ensure successful integrations.
Desirable Skills and Experience:
- Vendor-specific certifications for Security orchestration, automation, and response platforms.
- Ability to develop and implement long-term automation strategies aligned with security operation objectives.
- Ability to translate technical concepts into clear, actionable insights for technical and non-technical partners.
- Meticulous focus on ensuring accuracy, reliability, and security in automation workflows.
Microsoft Security (Sentinel) Automation & Detection Engineer employer: LinkedIn
Join a leading multinational semiconductor and software design company in Cambridge, where innovation meets a collaborative work culture. As a Microsoft Security (Sentinel) Automation & Detection Engineer, you will benefit from a hybrid working model, competitive remuneration, and opportunities for professional growth in a dynamic environment that values your expertise in cybersecurity. With a focus on employee development and cutting-edge technology, this role offers a unique chance to contribute to impactful security solutions while working alongside industry experts.
StudySmarter Expert Advice🤫
We think this is how you could land Microsoft Security (Sentinel) Automation & Detection Engineer
✨Tip Number 1
Familiarise yourself with Microsoft Sentinel and its features. Understanding the nuances of Sentinel, including its Content Hub and Analytics capabilities, will give you a significant edge during discussions with our team.
✨Tip Number 2
Showcase your experience with automation tools like Python and PowerShell. Be prepared to discuss specific projects where you've implemented these tools to enhance security operations, as practical examples can really make you stand out.
✨Tip Number 3
Network with professionals in the cybersecurity field, especially those who have worked with Microsoft Sentinel. Engaging in relevant forums or LinkedIn groups can provide insights and connections that may benefit your application.
✨Tip Number 4
Stay updated on the latest trends in cybersecurity and automation. Being knowledgeable about current threats and how automation can mitigate them will demonstrate your commitment to the role and the industry.
We think you need these skills to ace Microsoft Security (Sentinel) Automation & Detection Engineer
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights relevant experience in security operations, incident response, and detection engineering. Emphasise your proficiency with automation tools like Python, PowerShell, and KQL, as well as your hands-on experience with Microsoft Sentinel.
Craft a Strong Cover Letter:In your cover letter, explain why you're the perfect fit for the role. Mention specific projects where you've contributed to security automation and detection engineering, and how your skills align with the responsibilities outlined in the job description.
Showcase Relevant Projects:If you have worked on large-scale security automation projects or have experience with SIEM management, include these details in your application. Highlight any specific achievements or improvements you made in previous roles that relate to the job.
Prepare for Technical Questions:Be ready to discuss your technical expertise during the interview process. Brush up on your knowledge of Microsoft Sentinel, cloud security tools, and automation strategies, as well as your ability to translate complex concepts into actionable insights.
How to prepare for a job interview at LinkedIn
✨Showcase Your Technical Skills
Be prepared to discuss your hands-on experience with Microsoft Sentinel and related tools. Highlight specific projects where you've implemented SIEM detections or built security automations, as this will demonstrate your practical knowledge and expertise.
✨Understand the Role's Responsibilities
Familiarise yourself with the key responsibilities outlined in the job description. Be ready to explain how your previous experiences align with tasks like building automated workflows and collaborating with Cyber Defence Operation analysts.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills in real-world scenarios. Think of examples where you successfully automated processes or improved operational efficiency in a SOC environment, and be ready to discuss the outcomes.
✨Communicate Clearly and Effectively
Since the role involves translating technical concepts for various stakeholders, practice explaining complex ideas in simple terms. This will show your ability to communicate effectively with both technical and non-technical partners.
