- English
- Dutch
- German
Description
General information:
- Job title: Security DevOps Engineer
- Ideal start date: As soon as possible, BUT in case you’re the right candidate and you can start in januari – that can be arranged.
- Location: Utrecht surrounding.
- MBA Payroll
- Duration: 6 – 12 months
- Hours p/w: full time, 36 – 40 hours.
Role Overview
In this role, your primary focus will be safeguarding our client's organization from cyber threats by crafting effective security detections within Microsoft Sentinel.
Key Activities:
- Develop sophisticated and high-quality detections based on the MITRE ATT&CK framework.
- Investigate the use of AI, machine learning, and User Entity Behavior Analytics (UEBA).
- Prioritize automation for continuous integration (CI/CD), seamless production deployment, and auto-recertification of security detections.
- Deliver real-time security data and insights, monitor coverage and identify potential risks.
- Participate in governance meetings and contribute to threat modeling with stakeholders.
Core Responsibilities:
- Tailor Microsoft Sentinel setups to meet specific security needs and work closely with various teams to ensure effective configuration.
- Develop custom detection rules, alerts, and automation tools to address unique security challenges.
- Connect Azure Sentinel with other Microsoft tools, third-party software, and data sources to enhance security visibility and streamline incident response.
- Provide technical support for troubleshooting and fine-tuning Sentinel deployments, continuously improving the system's performance.
- Maintain thorough documentation of system designs, configurations, and best practices for deploying Azure Sentinel.
- Lead training sessions to upskill internal teams in using and managing Azure Sentinel.
- Assist in security audits and assessments to ensure Sentinel environments comply with regulatory and industry standards.
Required Skills & Experience:
- In-depth knowledge of Azure, AWS, or Google Cloud services, along with experience in security investigations and cloud-based forensics.
- Proficient in using Microsoft Sentinel, Kusto Query Language (KQL), Log Analytics, and AWS CloudWatch.
- Strong experience with Endpoint Detection and Response tools commonly used in enterprise settings.
- Expertise in Microsoft Azure DevOps, including CI/CD pipelines, service connections, and software integration.
- Proficiency in Bash, Powershell, Azure CLI, YAML, Ansible, and JSON.
- Extensive experience in cybersecurity, threat intelligence, and forensic IT investigations.
- Familiarity with security frameworks like NIST, ISO 27001, CIS, OWASP, and the Cloud Controls Matrix (CCM).
- Strong teamwork and relationship-building skills, with a proven ability to mentor and lead others.
We are aware that we ask a lot. In case you feel like you’re up for a challenge but don’t meet all the requirements mentioned above, feel free to apply and we’ll schedule a meeting promptly.
Michael Bailey International is acting as an Employment Business in relation to this vacancy.
Share Now