Cyber Security

Job description

• Experience in cloud computing and cloud security role
• Experience in Azure security role
• Experience in Microsoft Sentinel and Azure log analytics and developing Kusto Query Language Experience in SIEM and SOAR implementation
• Worked on any automation script
• The Sentinel Engineer has to focus mainly on the SIEM and SOAR Use case creation and development should also have real time experience in data collection using the sentinel and Azure Log Analytics toolsets Should have experience in connecting various Log connector using the inbuilt log collector should have experience in connecting the Onprem security logs from various source where sentinel dont have any readymade connector Should have knowledge on different method of collecting security event logs like syslog rsyslog syslogng and have hands on experience in implementing these functions The Engineer should have the experience in developing playbook analytic rule workbooks notebooks incident Threat hunting developing KQL queries for data normalization and parsing capability for Log Analytics data ingestion pipeline

Required Technical Skills

• Highly proficient in Microsoft Sentinel and Azure Log Analytics
• Able to connect any type of logs and from any type of source to SentinelLog Analytic work space
• Should have hands on experience in creating playbook analytic rule workbooks notebooks incident Threat hunting
• Should have experience in developing KQL queries for data normalization and parsing capability for Log Analytics data ingestion pipeline
• Able to automate and integrate developed use cases into DevOps CICD pipeline
• Develop and automate incident response capability using the Azure Logic Apps
• Develop Jupyter notebooks using any scriptpython and to integrate with Microsoft Sentinel

Skills : Sentinel