Senior Security Engineer

Overview

Lead Microsoft Cloud security, SOAR automation, and team coaching.

Key Responsibilities

• security automation
• siem tuning
• tier-3 support
• soc management
• license evaluation
• report generation

Tasks

-Monitor and respond to feedback from the customers (employees and business stakeholders) -Lead-guide the local Service Desk/ OSS teams with knowledge bases to resolve tickets at first instance for issues relating to security software and configurations -Evaluation of license usage and potential growth -Guide and implement automations, develop and fine-tune the SIEM detection rules to reduce manual efforts -Work with a globally distributed team, taking inputs from the business, SOC, and management to roll out systems and troubleshoot (Tier-3) support for security issues -Develop the automation (including playbooks, SOAR), scripts to monitor system-health, as well as management the SOC tools in use -Provide feedback on tooling and identify additional needs -Bring a problem-solving and solutions-mindset, coordinate with the IT teams as needed -Extract data from systems and build reports for management; PowerBI skills would be an advantage

Requirements

• ms sentinel
• defender
• azure
• siem
• bachelor's
• leadership

What You Bring

-Experiences with other concepts and systems like Privileged Account Management, Key Management (certificates, keys, ciphers, etc.). -Solid abilities to lead and plan the architecture, deliveries, and even more importantly coach and teach other members of the technical team to high levels of technology excellence -Solid knowledge about the overall security landscape, including Threat and Vulnerability Management, and the ability to guide on their remediation. -Planned and meticulous approach to deliveries. -Previous experiences in security tools and systems administration, including experience as a security administrator for security platforms -Knowledge of extracting relevant data, creating security reports etc. would be a definite advantage. -Ability to lead security systems integration, e.g., defining the architecture to work with ticketing systems, e.g. integrating Defender to create–manage the tickets and communications in ServiceNow -Bachelor's degree or equivalent in Information Technology, Computer Science, Engineering, data sciences, or related field -Knowledge and/or willingness to learn about advanced security capabilities, including integrations with other systems -Cyber professional at heart, tracking and mitigating emerging cyber threats against the company (e.g. zero-day exploits, APTs etc). -A proven track record in improving and maturity existing security implementations and configurations -Strong analytical skills with a keen eye for detail and accuracy. -Significant technical skills in the security area, especially with Microsoft tools, (including but not limited to) MS Sentinel, Defender, Purview, Entra, AD, etc. -Knowledge and experience in SIEM and Microsoft platforms (Microsoft Azure ecosystems), other vendor security systems are good experiences as well (e.g. CyberArk, Akeyless) -Good knowledge of EDR systems e.g. MS Defender, KQL etc. (or alternatively the willingness to learn them)

People Also Searched For

About Wsp

-Partners with clients to create sustainable, efficient, and resilient solutions. -Known for iconic projects like the One World Trade Center and London's Crossrail. -Provides cutting-edge services in transportation, energy, water, and commercial developments. -Blends technical expertise with deep industry knowledge to solve complex challenges globally.

Sector Specialisms