Experienced in Azure, Windows & Linux Systems Engineer to join our team on a 6-month contract basis, with the possibility for extension based on performance, to lead the implementation and rollout of a Managed Detection and Response (MDR), SIEM, and Endpoint Detection & Response (EDR) solution across enterprise environments. This role is responsible for deploying, configuring, and integrating Microsoft Sentinel and Microsoft Defender for Endpoint within hybrid infrastructures, ensuring scalable, secure, and compliant operations.
The ideal candidate will leverage automation (Ansible, PowerShell, Bash) to execute large-scale deployments across Windows, Linux, and operational technology (OT) environments. They will configure Azure components, including Log Analytics Workspaces, resource groups, RBAC, and service principals, and manage Sentinel data ingestion through Azure Monitor Agent (AMA), Data Collection Rules (DCRs), and syslog/CEF forwarders.
This role requires strong firsthand experience with Windows Server (2019–2025) and Active Directory, including Group Policy, service accounts, and RBAC troubleshooting, as well as Linux system administration (Rocky Linux, Ubuntu) for package management, system configuration, and firewall configuration. The engineer will also support Defender for Endpoint onboarding across Windows and Linux systems and ensure reliable syslog integration from network devices such as Check Point and Extreme Networks.
Additionally, the role requires awareness of PCI-scoped environments and adherence to security and compliance standards throughout the deployment lifecycle. The successful candidate will collaborate across infrastructure, security, and operations teams to deliver a resilient and scalable security monitoring platform.
Ansible playbook development for at-scale Windows/Linux/OT rollout
• Azure administration - Log Analytics Workspaces, resource groups, RBAC, service principals
• Sentinel data ingestion - AMA, DCRs, syslog/CEF forwarders
• Microsoft Defender for Endpoint deployment on Windows and Linux servers
• Rocky Linux and Ubuntu administration competence for troubleshooting package management, systems, firewalls on the Linux side; GPO, services, and AD account/RBAC
• Windows Server 2019/2022/2025 and Active Directory competence for troubleshooting GPO, service accounts, and AD RBAC for the DC/server agent rollout
• Check Point and Extreme Networks basic knowledge (for the syslog server)
• PowerShell and Bash scripting
• PCI scope awareness
Never miss an opportunity! Create an alert based on the job you applied for.
