Microsoft Sentinel SME

Texas City, TX, US • Posted 6 days ago • Updated 4 days ago

Contract W2

Contract Independent

No Travel Required

On-site

$80 - $85/hr

Fitment

Dice Job Match Score™

✨ Finding the perfect fit...

Job Details

Skills

Data Lake
Design Documentation
Microsoft Azure
Microsoft
Microsoft Windows
Linux
Data Validation
Data Retention
Infrastructure Architecture

Summary

Job Title: Microsoft Sentinel SME

Location: Texas City, Texas – 5 days onsite

Duration: Long term

Skills:

This role is all about designing, building, and managing a test environment for Microsoft Sentinel and Defender xDR that mirrors the production setup. The focus is on ensuring seamless integration of logs from Windows, Linux, and onpremises servers, guiding log forwarding to CRIBL, Sentinel Data Lake, and Azure Data Explorer (ADX).

Stage

Deliverable(s): 1.0 Initiation & Planning

High Level Tasks

Collaborate with the relevant security teams to identify all prerequisites for the test environment, including network configurations, accounts, and necessary resources.

Provide recommendations for the architecture of the test environment, ensuring it aligns with best practices for Microsoft Sentinel and Defender XDR.

Develop a comprehensive deployment strategy for Microsoft Sentinel and Defender XDR, considering scalability and future integration needs.

Establish security configurations for Sentinel and Defender XDR, ensuring compliance with organizational policies.

Create a high-level deployment plan that incorporates automation scripts to streamline the setup process.

Identify any specialized connectors or integrations required for the test environment.

Review existing configurations and propose enhancements to optimize performance and security.

Deliverable(s)

Detailed Project Plan

Initial Design Document (including security configurations)

Deployment Guide for Microsoft Sentinel and Defender XDR

Best Practices Document for Sentinel and Defender XDR Configuration

2.0 Design: Consultant will perform the following:

Create Infrastructure Architecture Diagrams (IADs) for the test environment, detailing the components of Microsoft Sentinel and Defender XDR.

Design and implement a data flow process for the secure transfer of data between Microsoft Sentinel and Defender XDR, including:

Mechanisms for data ingestion from various sources.

Procedures for data validation and integrity checks.

Protocols for data retention and removal policies.

Define the roles and permissions required for users interacting with the test environment.

Deliverable(s)

Infrastructure Architecture Diagrams

Data Flow Design Document

User Role and Permissions Document

Solution Architecture Document using organizational templates

3.0 Testing/Configuration

Configure all necessary prerequisites for the test environment, including network settings, firewall rules, and security measures.

Install Microsoft Sentinel and Defender XDR components as per the deployment guide.

Configure integration points with existing systems and data sources.

Create and test customized data connectors to ensure seamless data flow.

Validate the data ingested into Microsoft Sentinel and Defender XDR, ensuring accuracy and completeness.

Develop test scenarios to simulate various use cases and failure modes to ensure system resilience.

Collaborate with security teams to establish health monitoring mechanisms for ongoing reliability.

Deliverable(s)

Build and Configuration Document for Microsoft Sentinel and Defender XDR

Pre-deployment Checklist for environment readiness

Test Plan for validating functionality and performance

Monitoring Document for configuring alerts and compliance checks

Reporting Template for Sentinel and Defender XDR status and troubleshooting

4.0 Documentation / Training

Create comprehensive documentation for all implemented solutions, detailing architecture, configuration, and operational procedures.

Develop troubleshooting guidelines for common issues encountered in the test environment.

Provide training sessions for relevant personnel on using and maintaining Microsoft Sentinel and Defender XDR effectively.

Deliverable(s)

Troubleshooting Guide

Installation issues and resolutions

General operational issues and solutions

Training Documentation for operating Microsoft Sentinel and Defender XDR

User guides for common tasks and features

Maintenance tasks and best practices

5.0 General Consulting

Collaborate with stakeholders on any additional tasks that may arise during the project.

Ensure successful completion of the test environment setup with ongoing operational, technical, or strategic support.

Deliverable(s)

Updated documentation post-deployment for any changes made

Health monitoring updates post-deployment

Recommendations for optimization to improve performance and resource utilization.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 10501706
Position Id: 8869331
Posted 6 days ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Microsoft Sentinel SME

Dice Job Match Score™

Job Details

Skills

Summary

Similar Jobs