Microsoft Sentinel Security Analyst

Teamware Solutions

5 - 6 years

5 - 7 Lacs

Chennai Tamil Nadu India

Posted:4 weeks ago| Platform: Foundit logo

Apply

Work Mode

On-site

Job Type

Full Time

Job Description

Key Responsibilities:

Monitor security alerts, events, and logs within
Microsoft Sentinel
to detect, analyze, and respond to potential threats.
Develop, tune, and optimize
KQL (Kusto Query Language)
queries and analytic rules for effective threat detection.
Conduct proactive threat hunting and vulnerability assessments within the Azure environment.
Investigate security incidents, perform root cause analysis, and recommend remediation steps.
Collaborate with SOC analysts, IT teams, and stakeholders to escalate and resolve security incidents.
Maintain and update
playbooks
and automation workflows using Azure Logic Apps and Sentinel SOAR capabilities.
Generate and present regular security reports and dashboards to management.
Stay current with the latest cyber threats, vulnerabilities, and best practices in cloud security.
Assist with compliance audits and ensure adherence to security policies and standards.

Qualifications and Requirements:

Bachelor's degree in Cybersecurity, Computer Science, or a related field (or equivalent experience).
3+ years of experience in cybersecurity, preferably within a Security Operations Center (SOC).
Hands-on experience with
Microsoft Sentinel
and Azure security services (Azure Security Center, Azure Defender).
Proficient in
Kusto Query Language (KQL)
for writing complex detection rules and queries.
Familiarity with cloud security principles, identity and access management (IAM), and network security.
Experience with incident response, threat hunting, and malware analysis.
Knowledge of security frameworks such as
NIST
,
MITRE ATT&CK
,
CIS
, or
ISO 27001
.
Strong analytical, problem-solving, and communication skills.

Desirable Skills and Certifications:

Certifications such as
Microsoft Certified: Azure Security Engineer Associate
,
Certified SOC Analyst (CSA)
,
GIAC Certified Incident Handler (GCIH)
, or
CompTIA Security+
.
Experience with SOAR platforms and automation tools.
Familiarity with scripting languages (PowerShell, Python) for automation and investigation.
Understanding of network protocols, firewall configurations, and endpoint security solutions.

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.