Sentinel SIEM Engineer

• Design and Develop SIEM Use Cases in Microsoft Sentinel tailored to specific threat detection and business requirements.
• Proven hands-on experience with Microsoft Sentinel (deployment, rule creation, tuning, and automation).
• Strong knowledge in SIEM Use Case development, threat detection, and mitigation strategies.
• Collaborate with SOC teams, threat hunters, and security architects to translate detection requirements into effective Sentinel analytics rules and workbooks.
• Provide consulting expertise to guide customers and teams on Microsoft Sentinel deployment, configuration, and optimization in line with industry best practices.
• Implement and fine-tune Kusto Query Language (KQL) queries for log analytics and rule creation.
• Support automated incident response by developing Logic Apps and playbooks.
• Continuously assess, improve, and document Sentinel use cases and detection logic.
• Stay updated with Microsoft Sentinel and broader Azure security roadmap to advise on upgrades and enhancements.
• Deep understanding of cybersecurity operations, incident response lifecycle, and threat intelligence.
• Excellent client-facing and internal communication skills.

Microsoft Certified: Security Operations Analyst Associate or other relevant Sentinel certifications