Senior SOC Analyst

Under general supervision, plans, directs and coordinates security operational duties in Information Technology, specifically in the field of Information Security. Develops and enforces the organization's security policies and procedures.

Job Summary: An ideal candidate will have experience in the Microsoft security products since thats what were using for now/ MS Defender MS Entra ID On-premises Active Directory. Daily tasks entail: Monitoring and remediating security alerts from Sentinel and Defender, Helping develop Sentinel workflows/workbooks for automating response, Utilizing MS Threat Explorer and Advanced Hunting for investigations, Configuring Exchange transport rules with respect to security events, Configuring Defender Tenant Block/Allow lists, Providing forensic data for future investigations.

Required skills include: Georgia GMicrosoft Defender for Identity (Threat Explorer, Tenant Block/Allow Lists, Incidents and Alerts, etc.) - Required 3 Years, Microsoft Active Directory - Required 3 Years, Microsoft Entra ID (formerly Azure Active Directory) - Required 3 Years, MS Sentinel (SIEM, and Investigations) - Required 2 Years, Knowledge in Defender Kusto Query Language - Highly desired 1 Year.