More jobs:
Azure Sentinel SIEM Engineer/Cybersecurity Expert
Job in
Town of Poland, Jamestown, Chautauqua County, New York, 14701, USA
Listed on 2026-07-06
Listing for:
UST
Full Time
position Listed on 2026-07-06
Job specializations:
-
IT/Tech
Cybersecurity
Job Description & How to Apply Below
Location: Town of Poland
Overview
We are seeking an experienced Azure Sentinel SIEM Engineer to join our global Security Operations Team. In this role, you will be responsible for designing, implementing, and optimizing security monitoring capabilities within Microsoft Sentinel, helping clients strengthen their cyber defense posture through advanced detection engineering, use case development, and SIEM architecture design. You will work closely with customers, security analysts, and engineering teams to develop and maintain effective detection strategies, onboard log sources, and ensure security monitoring aligns with industry best practices and evolving threat landscapes.
Key Responsibilities- Gather and analyze customer requirements and recommend best practices for Microsoft Sentinel deployment
- Provide consultative guidance on security operations, detection engineering, and Sentinel platform capabilities
- Design, develop, and maintain Sentinel use cases, analytics rules, correlation searches, workbooks, dashboards, and detection content
- Design and document Sentinel architectures tailored to customer environments and security requirements
- Support customer workshops, technical discussions, and architecture reviews
- Deploy, configure, and optimize Microsoft Sentinel according to vendor recommendations and industry best practices
- Assist customers with onboarding and configuration of in-scope log sources
- Validate and verify log source data ingestion, normalization, and visibility within Sentinel
- Create and maintain detailed technical documentation for use cases, playbooks, workflows, and platform configuration
- Continuously improve detection coverage by aligning use cases with emerging threats, attack techniques, and customer requirements
- Minimum 5 years of experience in SIEM engineering, detection engineering, security operations, or a related cybersecurity role
- Strong hands-on experience with Microsoft Sentinel (recent experience is required)
- Experience working with other enterprise SIEM platforms is advantageous
- Advanced knowledge of Kusto Query Language (KQL) and developing detection use cases within Sentinel
- Strong understanding of security monitoring, threat detection, and incident response processes
- Knowledge of common cyber attack techniques, threat actors, and attack frameworks, including MITRE ATT&CK
- Experience creating correlation rules, dashboards, workbooks, and security use cases
- Strong analytical, troubleshooting, and problem-solving skills
- Excellent communication and stakeholder management abilities
- Ability to work independently and proactively in a global team environment
- Bachelor's degree in Information Security, Computer Science, or equivalent practical experience
- Microsoft Sentinel Administrator or related Microsoft Security certifications
- Industry certifications such as CISSP, GIAC GSOC, GCFA, GCIH, or equivalent
- Experience with security automation and orchestration technologies
- Experience supporting enterprise-scale SOC environments
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×