Job ID: GA-795245
Onsite/Local Microsoft Security Engineer with Defender Kusto Query Language, Active Directory, Entra ID, SIEM/Sentinel, Threat Explorer, Advanced Hunting, and forensic experience
Location: Lawrenceville, GA (GGC)
Duration: 4 Months
Skills:
Microsoft Defender for Identity (Threat Explorer, Tenant Block/Allow Lists, Incidents and Alerts, etc) Required 3 Years
Microsoft Active Directory Required 3 Years
Microsoft Entra ID (formerly Azure Active Directory) Required 3 Years
MS Sentinel (SIEM, and Investigations ) Required 2 Years
Knowledge in Defender Kusto Query Language Highly desired 1 Years
Description:
Under general supervision, plans, directs and coordinates security operational duties in Information Technology, specifically in the field of Information Security. Develops and enforces the organization s security policies and procedures.
Job Summary:
An ideal candidate will have experience in the Microsoft security products since that s what we re using for now/
MS Defender
MS Entra ID
On-premises Active Directory
Daily tasks entail:
Monitoring and remediating security alerts from Sentinel and Defender
Helping develop Sentinel workflows/workbooks for automating response
Utilizing MS Threat Explorer and Advanced Hunting for investigations
Configuring Exchange transport rules with respect to security events
Configuring Defender Tenant Block/Allow lists
Providing forensic data for future investigations
Never miss an opportunity! Create an alert based on the job you applied for.
