Software Developer (Microsoft Sentinel / SOAR / UEBA)

Overview

On Site
Depends on Experience
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - 12 Month(s)
No Travel Required
Unable to Provide Sponsorship

Skills

ARM
Analytics
Application Development
Cloud Computing
Collaboration
Computer Science
Continuous Delivery
Continuous Integration
Incident Management
Microsoft Azure
Health Care
Cyber Security
Dashboard
DevOps
Firewall
GitHub
Management
Systems Design
Threat Modeling
Technical Writing
YAML
Software Engineering
JSON
Microservices
Microsoft
Recruiting

Job Details

Job Title: Software Developer
Location: Austin, TX (Onsite)
Client: State Of Texas
JD:

Key Responsibilities
Develop Microsoft Sentinel SOAR automation playbooks using Azure Logic Apps, Azure Functions, ARM templates, REST APIs, and custom scripts.
Build automated workflows for alert enrichment, triage, notifications, incident response, and case management across various security platforms.
Create UEBA analytics, anomaly detection rules, KQL-based behavior models, and threat-hunting queries to enhance security visibility.
Engineer SIEM content including custom data connectors, ingestion pipelines, dashboards, visual workbooks, and detection-as-code assets.
Apply MITRE ATT&CK, Zero Trust, and threat-modeling principles to continuously refine and tune Sentinel performance and reduce false-positive alerts.
Support application development by building helper microservices, APIs, and scripts using Python, PowerShell, .NET, or similar languages.
Participate in DevOps activities—version control, CI/CD pipelines, automated deployment, and infrastructure-as-code.
Create and maintain technical documentation such as architecture diagrams, SOPs, runbooks, and system design documents.
Collaborate with cybersecurity, infrastructure, DSHS, HHSC CISO Office, and application teams to gather requirements, test solutions, and deploy automations.
Provide Tier III support for complex Sentinel engineering issues and participate in after-action reviews.

Required Skills & Minimum Qualifications
Bachelor’s degree in Computer Science, IT, software engineering, cybersecurity, or related field.
8+ years of experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering
Experience developing scripts, automation, or integrations in cloud environments.

Preferred Experience
3+ years of hands-on experience with Microsoft Sentinel.
Experience creating UEBA behavior models, anomaly detections, and KQL-based analytics.
Experience building SOAR automation playbooks and integrating Sentinel with EDR, IAM, Firewalls, Email Gateways, or ticketing platforms.
Familiarity with DevOps pipelines (GitHub/Azure DevOps), JSON/YAML, and Microsoft certifications such as SC-200, AZ-900/104, SC-100/300.
Prior experience working in government, healthcare, or regulatory environments.
please share resumes to

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Nueve Solutions, LLC