SIEM Sentinel Engineer

You should have strong knowledge and expertise in MS Sentinel SIEM engineering and administrative activities. Operational profiles are not eligible for this position. Your experience in the SIEM engineering role should be more than 4 years, and you must possess problem-solving and people management skills. Your responsibilities will include building custom analytical rules, tuning them, creating automation through Azure logic apps, managing the entire product feature, and configuring end-to-end solutions. Proficiency in forming KQL queries and functions for complex detection and monitoring requirements is essential. You should have in-depth knowledge of the MITRE attack framework and be skilled in developing analytical rules and custom dashboards/workbooks across the framework. Additionally, expertise in log management, retentions, maintenance of logs, access management, and development of custom dashboards based on varied requirements is required. You must have a proven track record of implementing Sentinel advanced features, efficient log collection mechanisms, deployment and maintenance of log forwarders, and local agents. Integrating data sources that are not supported by Sentinel tool OOB, custom parser development, and resolving technical issues in Sentinel are crucial requirements. Ability to prepare and maintain policy and procedure documentations related to SIEM technology, as well as proficiency in handling content from the content hub and log analytics workspace, are essential. Participation in customer or client reviews, global certifications regarding security controls in SIEM, and understanding compliance and regulatory requirements are desirable. Candidates who have completed Sentinel Ninja Level 400 Training and Certification will be preferred. Knowledge of Microsoft Sentinel pricing, Microsoft defender products, Microsoft Cloud services, and Azure Arc is beneficial. Collaboration with stakeholders to address technical issues and support complex business, security, and operational requirements is expected. Furthermore, you should be able to work with vendor technical support groups to resolve issues effectively. Hands-on experience in Microsoft Defender XDR stack will be an added advantage. About Virtusa: Virtusa values teamwork, quality of life, and professional and personal development. You will be joining a global team of 30,000 individuals who care about your growth and offer exciting projects, opportunities, and exposure to state-of-the-art technologies throughout your career with us. At Virtusa, collaboration and a team-oriented environment are highly regarded. We provide a dynamic space for great minds to nurture new ideas and strive for excellence.,