Related skills
azure microsoft sentinel defender for cloud entra id kql๐ Description
- Monitor alerts in Microsoft Sentinel, Defender XDR, Defender for Cloud.
- Triage alerts by severity, impact, and response actions.
- Differentiate false positives, benign activity, threats using playbooks.
- Continuously monitor cloud, identity, endpoint, and network telemetry.
- Investigate suspicious activity across Azure, Entra ID, Defender XDR.
- Correlate logs to establish timelines and root cause.
๐ฏ Requirements
- 1+ years in a SOC or related security role.
- Hands-on with SIEM platforms (Microsoft Sentinel preferred).
- Analyze logs from Azure/Entra ID, Defender (Endpoint, Cloud, Office 365), Windows/Linux.
- Network security tooling: firewalls, IDS/IPS, Defender for Cloud.
- Basic incident response processes.
- Strong analytical and investigative skills.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to All Other Jobs. Just set your
preferences and Job Copilot will do the rest โ finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!