CrawlJobs Logo

Senior Microsoft Sentinel Engineer

nttdata.com Logo

NTT DATA

Location Icon

Location:
Romania , Brasov

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Senior Microsoft Sentinel Engineer will be responsible for designing and maintaining Microsoft Sentinel deployments, optimizing detection rules, and leading threat hunting initiatives. Candidates should have a bachelor's degree in Information Security or related fields and 5-10 years of experience in similar roles. Proficiency in KQL and Microsoft Sentinel is essential. Relevant certifications such as SC-200 and SC-100 are preferred. The role offers flexible working options and opportunities for professional development.

Job Responsibility:

  • Design, implement, and maintain Microsoft Sentinel deployments, ensuring optimal configuration, data ingestion quality, and alignment with organizational security objectives
  • Create, refine, and optimize detection rules, analytics, workbooks, and dashboards to support effective monitoring of cloud, hybrid, and on-premises environments
  • Develop advanced KQL queries to support threat detection, hunting, reporting, and operational efficiency
  • Build and maintain SOAR playbooks using Logic Apps to automate triage, response actions, and workflow orchestration
  • Lead threat hunting initiatives leveraging Microsoft Sentinel, Defender XDR suite data, and relevant threat intelligence sources
  • Produce comprehensive documentation, including use cases, detection logic, response procedures, runbooks, and architectural diagrams
  • Collaborate with SOC analysts, security engineers, cloud teams, and application owners to ensure cohesive incident response and coordinated remediation activities
  • Oversee the integration of new log sources, ensuring proper mapping, normalization, and adherence to governance and compliance standards
  • Conduct continuous tuning and performance optimization of alerts, analytic rules, and data connectors to improve signal-to-noise ratio
  • Provide guidance, mentorship, and technical leadership to junior team members and cross-functional IT staff
  • Available for 24x7 OnCall

Requirements:

  • Bachelor's degree in Information Security, Cybersecurity, Computer Science, or related field
  • Minimum 5-10 years of experience in a similar role
  • Extensive hands-on experience administering and engineering solutions within Microsoft Sentinel, including custom analytics, automation, and log management
  • Strong proficiency in KQL with the ability to craft complex queries for detection, investigation, and reporting
  • Deep understanding of security monitoring, threat detection methodologies, and incident response practices
  • Deep understanding of log source onboarding in Sentinel
  • Practical experience with Microsoft Defender XDR solutions (Defender for Endpoint, Identity, Office 365, and Cloud Apps)
  • Familiarity with cloud-native security architecture, particularly Azure services, identity management, and network security controls
  • Ability to translate technical concepts into clear, actionable guidance for various levels of stakeholders
  • Linux proficiency
  • Ansible/Terraform literate
  • Effective communication and documentation skills

Nice to have:

  • Relevant certifications (e.g., SC-200, SC-100, AZ-500, CISSP, GIAC certifications)
  • Experience integrating Sentinel with third-party log sources, SIEM platforms, and security tools
  • Knowledge of Python, Bash, PowerShell, or similar scripting languages
  • Background in SOC operations, threat hunting, detection engineering, or cloud security
  • German language
What we offer:
  • Smooth integration and a supportive mentor
  • Pick your working style: choose from Remote, Hybrid or Office work opportunities
  • Projects have different working hours to suit your needs
  • Sponsored certifications, trainings and top e-learning platforms
  • Private Health Insurance
  • Individual coaching sessions or accredited Coaching School
  • Epic parties or themed events

Additional Information:

Job Posted:
April 23, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
NTT DATA - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Microsoft Sentinel Engineer

End Point Security Senior Engineer

Senior Engineer role focused on endpoint security implementation and maintenance...
Location
Location
India , Noida
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience with EDR/XDR platforms such as Microsoft Defender for Endpoint or Sentinel One
  • Familiarity with vulnerability management tools
  • Knowledge of endpoint technologies including BitLocker, Application control, Endpoint privilege management, Windows Defender Firewall
  • Understanding of endpoint threat intelligence and ability to analyze threat data
  • Scripting or automation experience using PowerShell or other scripting languages
  • Total Experience Expected: 02-06 years
  • B.tech/BE/BCA qualification
Job Responsibility
Job Responsibility
  • Implement and maintain endpoint security solutions such as EDR, antivirus, encryption, and application control tools
  • Monitor, analyze, and respond to security alerts and incidents originating from workstations and endpoints
  • Apply and manage workstation hardening standards, including adherence to security baselines
  • Conduct vulnerability assessments on endpoints and coordinate timely remediation activities
  • Manage patch deployment for operating systems and applications to ensure compliance with internal policies and reduce exposure to threats
  • Ensure endpoint systems comply with security policies, standards, and regulatory frameworks
  • Actively participate in incident response efforts related to endpoint breaches or malware incidents
  • Contribute to risk assessments and provide input during security architecture reviews related to endpoints
  • Maintain a strong understanding of Windows and macOS operating systems from a security perspective
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

Truveta is the world’s first health provider led data platform with a vision of ...
Location
Location
United States , Seattle
Salary
Salary:
135000.00 - 180000.00 USD / Year
truveta.com Logo
Truveta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cyber Security, Computer Science, Information Security, Information Systems, or a related field, or equivalent practical experience
  • 5+ years of experience in Security Operations (SOC), Incident Response, or Detection & Response role, with demonstrated ownership of complex security incidents
  • Hands-on experience with Microsoft Sentinel (SIEM) and Microsoft Defender XDR (Defender for Endpoint, Identity, Office 365, Cloud Apps)
  • Proficiency in KQL (Kusto Query Language) for investigations, threat hunting, and detection engineering
  • Experience designing, tuning, and maintaining SIEM detections and SOAR automation, including alert triage and response workflows
  • Solid understanding of Azure cloud architecture, core services, and native security controls
  • Familiarity with Azure Entra ID, identity security concepts, RBAC, and IAM-related threats
  • Experience with handing high-severity security incidents, including cross-team coordination and stakeholder communication
  • Familiarity with MITRE ATT&CK, threat actor techniques, and modern attack methodologies across cloud, identity, and endpoint environments
  • Experience supporting on-call rotations and working in a 24/7 or follow-the-sun SOC environment
Job Responsibility
Job Responsibility
  • Incident Response: Handle investigation and response to security incidents across endpoints, identities, email, cloud workloads, and SaaS applications
  • Act as a senior escalation point for SOC analysts during complex or ambiguous security events
  • Participate in on-call rotations and provide senior-level escalation support when needed
  • Lead or contribute to post-incident reviews (RCA, postmortems) and track remediation actions to completion
  • Ensure incidents are accurately documented for audit, compliance, and operational learning
  • Maintain and improve incident response runbooks, playbooks, and escalation procedures
  • Support incident readiness activities, including tabletop exercises and response drills
  • Detection Engineering & Automation: Develop, tune, and maintain Microsoft Sentinel analytics rules to improve detection quality and reduce false positives
  • Design and optimize KQL queries for investigations, threat hunting, and detection engineering
  • Integrate and maintain log sources and data connectors in Microsoft Sentinel, ensuring data quality and proper normalization
What we offer
What we offer
  • Interesting and meaningful work for every career stage
  • Great benefits package
  • Comprehensive benefits with strong medical, dental and vision insurance plans
  • 401K plan
  • Professional development & training opportunities for continuous learning
  • Work/life autonomy via flexible work hours and flexible paid time off
  • Generous parental leave
  • Regular team activities (virtual and in-person)
  • Fulltime
Read More
Arrow Right

Senior Security Cloud Solution Architect

We are looking for a highly motivated and passionate Senior Security Cloud Solut...
Location
Location
Saudi Arabia , Multiple Locations
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science, Information Technology, Engineering, Business, Cybersecurity, or related field
  • 7+ years experience in cloud/infrastructure technologies, cybersecurity, information technology (IT) consulting/support, systems administration, network operations, software development/support, technology solutions, practice development, architecture, and/or consulting OR equivalent experience
  • Broad experience in security and expertise around related technologies and concepts such as Zero Trust, threat management, SOC monitoring (SIEM / SOAR), and Extended Detection & Response (XDR) + SIEM and Identity
  • Knowledge as a security engineer or consultant to understand industry trends and competitive landscape, advise customers on ways to strengthen their security posture or health, and land customer value through security
  • The technical aptitude and experience to learn new cloud security technologies and understand relevant cloud security market trends
  • Knowledge of cloud security platforms and competitors
  • Breadth of technical security experience and knowledge, with depth / Subject Matter Expertise in two or more of the following security solutions: Threat protection - Microsoft Defender for Cloud, Endpoint, Identity and O365 - hands on experience required, supported with certificates
  • Microsoft Sentinel - Hands on Experience in deploying Microsoft Sentinel in complex customer environments
  • Defender for Cloud - Hands On Experience in deploying Microsoft Defender for Cloud
  • Identity and Access Management (Microsoft Entra)
Job Responsibility
Job Responsibility
  • Trusted Advisor - Empower customers in their Microsoft Security adoption journey, being hands on with them to envision and define a Secure strategy, Architecture, and implementation of necessary security controls aligned with Microsoft XDR and Microsoft Azure Security workloads while ensuring operational health
  • Security Services Acquisition and Expansion - Position and deliver solutions that drive Security products usage with a focus on Defender and Microsoft Sentinel. Collaborate with Azure Infrastructure, Data, Apps teams to expand Security of cloud migration projects
  • Understand Customer/Partner Technical Environment - Accelerate Business Value of overall Security adoption by improving security posture and ensuring that the solution exhibits "Secure by Design" and Zero Trust framework
  • Architecture Design and Deployment - Run Architectural Design Session to build a plan for implementing the solution — governing design in line with customer business goals and their technical environment. Outcome is consensus on solution design and next steps toward production
  • Practice Development - Collaborate and orchestrate with other Cloud Solution Architects and Microsoft stakeholders including FastTrack, partner, and Microsoft Services in developing complex end-to-end Enterprise solutions with the Microsoft Security platform
  • Voice of the Customer- Be a Voice of Customer to share insights and best practices, connect with Global Security teams at Microsoft, Engineering and Product teams to remove blockers and influence the solution roadmap
  • Fulltime
Read More
Arrow Right

Junior Engineer Microsoft Sentinel

The Junior Security Engineer will support the operation and enhancement of secur...
Location
Location
Romania , Brasov
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in IT/ Finance / Business Administration, Project Management, or related fields
  • Minimum 1-3 years of experience in a similar role
  • Foundational understanding of SIEM concepts, security analytics, and incident response workflows
  • Basic familiarity with Microsoft Sentinel or comparable SIEM platforms
  • Introductory experience with KQL or willingness to learn and apply it regularly
  • Experience with Linux, Ansible, Terraform
  • General understanding of common security concepts such as logging, identity, endpoint security, and network fundamentals
  • Ability to analyze information methodically and communicate findings clearly
  • Preferred hands-on practice gained through internships, labs, home labs, or academic projects
  • Relevant certifications (e.g., SC-200, AZ-900, AZ-500, or equivalent introductory certifications)
Job Responsibility
Job Responsibility
  • Assist with the daily operation of Microsoft Sentinel, including monitoring data connectors, verifying log ingestion, and supporting health checks
  • Contribute to the creation and refinement of analytic rules, detection logic, dashboards, and workbooks
  • Develop and maintain KQL queries for reporting, basic threat hunting, and alert investigations
  • Support the creation and testing of SOAR playbooks to automate response workflows and routine tasks
  • Participate in incident triage by reviewing alerts, gathering relevant data, and escalating findings as needed
  • Document processes, investigation steps, detection logic, and playbook procedures in a consistent and organized manner
  • Assist in integrating new log sources into Sentinel, ensuring proper configuration and data validation
  • Work with senior engineers, SOC analysts, and IT teams to help ensure timely follow-up on investigations and remediation activities
  • Contribute to the continuous improvement of detections, alert quality, and visibility across cloud and on-premises environments
What we offer
What we offer
  • Smooth integration and a supportive mentor
  • Choose from Remote, Hybrid or Office work opportunities
  • Projects have different working hours to suit your needs
  • Sponsored certifications, trainings and top e-learning platforms
  • Private Health Insurance
  • Individual coaching sessions or joining our accredited Coaching School
  • Epic parties or themed events
Read More
Arrow Right

Senior Product Manager

The focus of the Targeted Customer Product Manager role within the Customer, Com...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Excellent cross-group and interpersonal skills, with the ability to articulate business needs for detection improvements
  • Knowledge of major cloud and productivity platforms as well as identity systems and related security concerns
  • Experience with direct customer and partner communication
  • Practical experience with Microsoft Security products, such as Entra, Intune, Purview, Sentinel, Defender family, and the evolving Copilot for Security
  • Familiarity with competing security products
  • Experience with reporting, analytical, and dashboarding capabilities including Microsoft Dynamics 365, Power BI, and Excel, with a strong data driven mindset
  • Understand SOC functions and workflows, such as incident triage and investigation, and translate those insights into successful customer experiences with Microsoft’s Security AI product
Job Responsibility
Job Responsibility
  • Act as the advocate and interface between customers, partners, and the Microsoft Security product and engineering teams for Microsoft’s Security AI product and the Microsoft 365 Defender product suite, Sentinel and Purview to ensure customer and partner issues are properly addressed, drive critical feedback and insights, and gather customer requirements to improve the product, value to customers, and product adoption
  • Support customers, partners, and engagement teams as the Security AI product evolves
  • Serve as a point of contact in Microsoft Security Engineering for assigned customers and partners
  • Work towards becoming a subject matter expert on the Microsoft Security AI strategy and supporting product technologies (Microsoft 365 Defender, Sentinel, and Purview) to effectively guide customers and partners
  • Work directly with customers at all levels of their security organization from analyst to CISO to support investigation and response
  • Deliver partner and customer readiness sessions online and/or in person
  • Embody Microsoft’s culture and values
  • Fulltime
Read More
Arrow Right

Senior Customer Experience Engineer

The Customer Experience Engineering (CxE) CARE organization is a foundational pa...
Location
Location
India , Multiple Locations
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, Engineering, Information Technology, or related technical field OR equivalent experience
  • 7+ years in a customer-facing, deep technical security-oriented role with demonstrated experience with crisis management, Incident Response, or escalation handling
  • 5+ years of experience with Microsoft Security products (e.g., Microsoft Defender, Entra, Intune, Sentinel, Purview) and enterprise security operations
  • 5+ years’ experience communicating in English language, demonstrating fluency in written and spoken communication
  • Participation in a 24x7x365 on-call rotation
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role
  • This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter
Job Responsibility
Job Responsibility
  • Strategic Technical Leadership: Serve as the primary technical point of contact for assigned strategic customers, developing a deep understanding of their security architecture, business goals, and operational environment
  • representing the engagement up through CISO levels
  • Technical Escalations: Directly engage and respond to technical escalations from Microsoft’s Mission Critical Security Customers as part of a 24/7 globally distributed engineering team and participate in the On-Call roster
  • Accelerated Incident Resolution: With minimal guidance, lead the response to critical incidents, acting as Incident Commander when necessary. Drive mitigation efforts, coordinate engineering engagement, and ensure timely root cause analysis and communication
  • Escalation Management: Own and manage technical escalations, ensuring swift resolution and transparent communication with both customers and internal stakeholders in a 24x7x365 environment
  • Customer Advocacy: Represent the voice of the customer within Microsoft Security Engineering. Influence product direction and support strategies based on customer feedback and real-world deployment insights
  • Collaboration: Collaborate closely with customers, account teams, product managers, core engineering, and support engineers to understand customer architecture, troubleshoot complex product issues, and align with stakeholders to drive resolution of critical escalations
  • Continuous Improvement: Identify systemic issues and contribute to long-term improvements in product quality, supportability, and customer experience
  • Fulltime
Read More
Arrow Right

Senior Azure Cloud Engineer

As a Sr. Azure Cloud Engineer you can expect to design and implement enterprise-...
Location
Location
United States
Salary
Salary:
Not provided
hso.com Logo
HSO
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of hands-on experience engineering on Microsoft Azure across networking, compute, storage, identity, and security
  • Proven delivery of enterprise landing zones with Azure Policy, management groups, RBAC, and guardrails
  • Strong Infrastructure as Code (Terraform and/or Bicep) with Azure DevOps or GitHub Actions CI/CD workflows
  • AVD implementation experience: deploy host pools/app groups, configure FSLogix profiles on Azure Files or Azure NetApp Files (shares, NTFS/ACLs, performance tiers), set up scaling plans and AVD Insights monitoring
  • Expertise in Microsoft Entra ID (Conditional Access, PIM, app registrations) and Azure security services (Defender for Cloud, Sentinel, Key Vault)
  • Strong proficiency in PowerShell and Azure CLI for automation and deployment
  • Python experience is a plus
  • Excellent troubleshooting across networking, identity, and platform services
  • strong written and verbal communication in client-facing contexts
Job Responsibility
Job Responsibility
  • Design and implement enterprise-scale Azure Landing Zones aligned to Microsoft Cloud Adoption Framework (CAF) and Well-Architected principles (management groups, subscriptions, RBAC, Policy/Initiatives, tags, monitoring, automation)
  • Build core services: Compute (VMs/Scale Sets), Storage, Key Vault, Container Registry, and PaaS (e.g., App Service, Functions, AKS integrations) as appropriate
  • Engineer network topologies (hub-and-spoke or Virtual WAN)
  • configure Azure Firewall, Application Gateway/WAF, Private Link, Private DNS, NAT Gateway, DDoS Protection
  • integrate ExpressRoute/VPN as needed
  • Plan & deploy Azure Virtual Desktop within the broader platform (host pools, app groups, workspaces) using FSLogix profiles on Azure Files/Azure NetApp Files
  • implement MSIX app attach and Scaling Plans
  • optimize performance (e.g., RDP Shortpath, GPU SKUs) and instrument with Azure Monitor/Log Analytics/AVD Insights
  • Implement Zero Trust controls with Microsoft Entra ID (Conditional Access, MFA, Privileged Identity Management, app registrations, enterprise apps, SCIM provisioning)
  • Apply defense-in-depth using Azure Policy/Initiatives, secure baseline images, Defender for Cloud, Defender for Cloud Apps, Microsoft Defender XDR integrations, and Microsoft Sentinel for SIEM use cases
What we offer
What we offer
  • competitive pay with and performance-based bonus
  • generous paid time off
  • flexible and affordable benefits program designed to help you be and stay well
  • medical, dental & vision coverage
  • flexible spending accounts
  • health reimbursement account
  • 401(k) plan with a company match
  • working alongside enthusiastic and energetic teammates in a dynamic and thriving environment
  • Fulltime
Read More
Arrow Right

Principal Consultant A2 - Infra

Microsoft Industry Solution - Global Center Innovation and Delivery Center (GCID...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, Engineering, or related field AND 3+ years leadership experience in relevant area of business. Higher Education Preferred
  • OR master’s degree in computer science, Information Technology, Engineering, or related field AND 6+ years’ experience in technology solutions, practice development, architecture, consulting, and/or Cloud Infrastructure domain
  • Highly proficient & solid Customer facing Project experience involving solution design, project envisioning, planning, development, and deployment of complex solutions with minimum of 10 plus years
  • Must have a proven record of delivering technical solutions
  • 2+ years managing multiple projects or portfolios
  • 1+ year(s) experience leading blended, multidisciplinary teams
  • Preferred Qualifications: Overall minimum 20+ Year of industry experience
  • Technical or Professional Certification in Cloud Infrastructure domain
  • Open to travel domestically and internationally and work with different cultures and customers
  • Technical certifications based on domain/service line (e.g., Azure, Security, Dynamics)
Job Responsibility
Job Responsibility
  • AI-First Delivery Leadership: Embed AI-first principles into delivery workflows, leveraging automation and intelligent orchestration where applicable
  • Lead end-to-end delivery of complex projects, ensuring solutions are scalable, robust, and aligned with client business outcomes
  • Drive engineering excellence through reusable components, accelerators, and scalable architecture
  • Oversee technical execution across multiple projects, ensuring adherence to best practices, quality standards, and compliance requirements
  • Collaborate with clients and internal stakeholders to define strategies, delivery plans, milestones, and risk mitigation approaches
  • Act as a technical point of contact for clients, translating business requirements into scalable technical solutions
  • Ensure delivery models are optimized for modern, AI-native execution, including integration of automation and intelligent processes
  • Ability to step into at risk projects, quickly assess issues, and establish a credible path to recovery or exit
  • Engineering Excellence: Champion high-quality engineering practices across all delivery engagements
  • Ensure adherence to coding standards, architectural integrity, and performance benchmarks
  • Fulltime
Read More
Arrow Right
Remote jobs Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog Salaries Tools About Us FAQ Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy