Software Developer II

About The Position

Requirements

• Bachelor's Degree with major coursework in computer science, computer information systems, software engineering, cybersecurity, or a related field.
• 2 years of full -time experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering.
• Knowledge of Microsoft Sentinel architecture, SOAR, and UEBA capabilities.
• Experience with programming or scripting languages such as Python, PowerShell, KQL, C#, or JavaScript.
• Familiarity with Azure cloud services and security operations processes.

Nice To Haves

• 3 or more years of hands -on technical experience with Microsoft Sentinel.
• Experience developing UEBA models, anomaly detection rules, and behavior -based analytics.
• Experience building security automation playbooks (SOAR).
• Experience integrating Sentinel with EDR, IAM, firewalls, and ticketing systems.
• Experience with DevOps pipelines and Git -based version control.
• Microsoft certifications such as SC -200, AZ -900, AZ -104, SC -100, or SC -300.
• Experience working in a government, healthcare, or regulatory environment.

Responsibilities

• Design, develop, test, and deploy Microsoft Sentinel SOAR automation playbooks using Azure Logic Apps, Azure Functions, ARM templates, and REST APIs.
• Build automated workflows for alert enrichment, triage, response actions, notifications, and case management.
• Integrate Microsoft Sentinel with third -party systems such as EDR, IAM, ticketing platforms, email gateways, and firewalls.
• Develop custom UEBA detection rules, anomaly models, behavioral analytics, and advanced hunting queries using KQL.
• Create and maintain analytics content, data parsers, normalization rules, and entity behavior profiles.
• Design and implement custom data connectors, ingestion pipelines, and data transformation logic.
• Develop dashboards, workbooks, detection -as -code assets, and hunting queries aligned with MITRE ATT&CK and Zero Trust principles.
• Develop supporting scripts, code modules, microservices, and APIs using Python, PowerShell, .NET, or similar languages.
• Collaborate with DSHS, HHSC CISO Office, and stakeholders on requirements, testing, deployment, and optimization.
• Produce technical documentation, SOPs, architecture diagrams, automation runbooks, and provide Tier III engineering support.

Benefits

• Air InfoSec offers an Individual Coverage Health Reimbursement Arrangement (ICHRA), providing up to $350/month in tax -free reimbursements to help cover the cost of your own health insurance premium. This gives you the flexibility to choose the plan that works best for you and your family.
• 1 hour of PTO earned for every 20 hours worked.
• Can carryover up to 5 days of PTO to the next calendar year.
• 5 paid state holidays (annually)
• 2 paid floating holidays (annually)
• $100 per year to apply towards annual certification fees or educational training.