Sentinel Engineer

Work youll do

Reporting to the Director of SOC Engineering, a Sentinel is primarily responsible for the build

development and maintenance of the Sentinel SIEM. The engineer will participate in installing,

configuring, and maintaining Microsoft Sentinel; design and develop detections; implement

operational and technical security controls; and adhere to organisational security policies and

procedures.

Skills Required :

Engineering

•       Analyse and define data requirements and specifications

•       Oversight of data system performance, capacity, availability, serviceability, and recoverability.

•       Analyse and plan for anticipated changes in data capacity requirements.

•       Install, configure and support data system components.

•       Raise/manage/close vendor support cases.

•       Develop and facilitate data-gathering methods.

•       Manage the compilation, cataloguing, caching, distribution, and retrieval of data.

•       Provide a managed flow of relevant information to represent data in creative formats.

•       Part of Data and Security Engineering escalation roster for critical alerts.

Data Analysis

•       Analyse data sources to provide actionable recommendations and strategic insights.

•       Assess the validity of source data and subsequent findings.

•       Conduct hypothesis testing using statistical processes.

•       Develop strategic insights from large data sets.

•       Develop data standards, policies, and procedures.

Client facing

•       Interface with customers to address concerns, issues, or escalations; track and drive to closure

any issues that impact the service and its value to clients.

•       Work with product owners to onboard additional data sources.

•       Present technical information to technical and non-technical audiences.

Professional Experience:

•       Experience working with Microsoft Sentinel.

•       Experience writing SIEM queries, constructing alert logic, and building dashboards.

•       Experience integrating custom log sources into Microsoft Sentinel.

•       An understanding of the information technology marketplace including modern security

operations and Digital Forensics/Incident Response.

•       Demonstrate a high level of flexibility and resourcefulness, being able to adapt to change and

challenges.

•       Experience communicating with a high level of professionalism.

•       Previous technical experience owning and delivering complex, technical bodies of work.

•       Evidence of working with or in the Enterprise market.

•       A demonstrable track record of success.

•       Ideally, experience working in or with a cyber security team.

•       Ideally, experience working with Endpoint Detection and Response products such as Microsoft

Defender ATP.

Your role as an Assistant Manager

We expect our people to embrace and live our purpose by challenging themselves to identify issues

that are most important for our clients, our people, and for society.

In addition to living our purpose, Senior Executive across our organization must strive to be:

• Inspiring - Leading with integrity to build inclusion and motivation

• Committed to creating purpose - Creating a sense of vision and purpose

• Agile - Achieving high-quality results through collaboration and Team unity

• Skilled at building diverse capability - Developing diverse capabilities for the future

• Persuasive / Influencing - Persuading and influencing stakeholders

• Collaborating - Partnering to build new solutions

• Delivering value - Showing commercial acumen

• Committed to expanding business - Leveraging new business opportunities

• Analytical Acumen - Leveraging data to recommend impactful approach and solutions

through the power of analysis and visualization

• Effective communication – Must be well abled to have well-structured and well-articulated

conversations to achieve win-win possibilities

• Engagement Management / Delivery Excellence - Effectively managing engagement(s) to

ensure timely and proactive execution as well as course correction for

the success of engagement(s)

• Managing change - Responding to changing environment with resilience

• Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost

integrity and precision

• Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues

and complex problems

• Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and

for Deloitte

• Empathetic leadership and inclusivity - creating a safe and thriving environment where

everyone's valued for who they are, use empathy to understand others to adapt our

behaviours and attitudes to become more inclusive.