SIEM SOAR Engineer

About The Position

Requirements

• 3+ years of experience configuring high-throughput streaming data pipelines with Microsoft Sentinel, Log Analytics, and Azure Monitor
• 3+ years of experience developing analytic rules and workbooks with KQL, automation rules, and configuring data connectors
• 3+ years of experience working with Azure and Microsoft 365 cloud environments
• Experience with Microsoft-native log sources, including Defender XDR, Intune, and Entra ID
• Experience with scripting in Bash, PowerShell, and Python
• Ability to work with REST APIs and develop custom data connectors
• Secret clearance
• HS diploma or GED

Nice To Haves

• Experience with the administration of M365, MDE, or Intune
• Experience with GraphQL, Power Apps, and Power Automate
• Knowledge of ELK stack, Cribl, Splunk ES
• Top Secret clearance
• Bachelor's degree
• Microsoft AZ-500, SC-200, AZ-104, CISSP Certifications

Responsibilities

• Partner with clients to validate Cloud Cybersecurity tools and controls that support mission-critical business objectives.
• Create technical roadmaps, project plans, requirements, designs, and implementation plans in Office 365, Salesforce, Workday, and other commercial SaaS Cloud solutions.
• Plan, coordinate, and perform red team penetration assessments.
• Conduct research on emerging technologies and industry trends independently for impact and applicability to client challenges.
• Work closely with clients, leadership, and vendors in formal and informal environments to gain approvals, overcome obstacles, and reach consensus in the furtherance of the client's mission and the company's Cloud security strategy.

Benefits

• health
• life
• disability
• financial
• retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program