Security engineer

ABOUT MVW TECHNOLOGY CONSULTING We are a rapidly growing Microsoft 365 and Workplace Management consultancy with offices in the UK, South America and Asia. We delight our customers with our personalised approach, highly dedicated and professional team, rapid mobilization of technology projects, and delivery of tangible benefits across productivity, mobility and security. POSITION SUMMARY Cyber Security Engineer providing engineering capability to the cybersecurity services team, being instrumental in the development of the Security Operations Centre (SOC), and supporting and mentoring other members of the wider team. RESPONSIBILITIES · Develop and optimise SOC processes and procedures and train the SOC team on how to follow them efficiently and effectively · Design, develop and deliver Sentinel solutions to clients · Use the MITRE ATT&CK cybersecurity knowledge base to enable the necessary steps to take to help predict an adversary’s behaviour and next move, and quickly and effectively respond to an attack. · Develop and optimize automation rules and playbooks in the SIEM (Microsoft Sentinel) · Carry out cost optimisation, considering what data tiering and appropriate filtering to ensure a cost effective solution for clients. · Assist in the onboarding and continued development of SOC clients and various aspects of their security stack into the SIEM. · Work closely with management to develop service improvement plans · Integrate various data sources into Sentinel for use in platform such as NGFW, IAM solutions and network telemetry. · Act as an escalation point during peaks in demand and as and when required · Work closely with Information security management and senior security consultants to develop internal security posture, policies and controls in accordance with the organisation’s ISO 27001 certification. EXPERIENCE · A minimum of 3 years’ experience working within as a Microsoft Sentinel Engineer · Hands on skills/experience identifying, investigating, containing and remediating sophisticated security attacks · Analytical rule automation and playbook development · Design, implementation, and integration of a SIEM solutions into a customer environment · Security management tooling such as intrusion detection and prevention, data loss prevention, firewall, VPN, filtering and traffic inspection, and security reporting · Strong understanding of Microsoft 365 and Office 365 security products e.g. Microsoft Defender for Endpoints and Microsoft Defender for Office 365 · Development of runbook procedures and incident management processes (desirable) · Parsing of different format data into Sentinel · Experience with complex Sentinel architecture · Experience cost optimisation of Sentinel solution · Experience with on-premises infrastructure (desirable) · Sentinel Data Lake solution (desirable) · Integration of third-party solutions into Sentinel via suitable methods. · Writing threat detections in Kusto Query Language (KQL) QUALIFICATIONS AND SKILLS · English level C1 or above · Strong analytical and documentation skills · Bachelor's degree or equivalent experience · Microsoft Sentinel SIEM · Strong scripting skills in Power Shell, Kusto Query Language, Python (highly advantageous) · Strong understanding of encryption technologies (TLS/SSL, PKI, IPSec, AES) · Microsoft 365 Security & Compliance Microsoft Defender for Endpoints Microsoft Defender for Office 365 Microsoft Defender for Cloud Apps Microsoft Secure Score · Microsoft 365 related certifications (desirable) · CISSP, Comp TIA Security+ or equivalent certification (desirable) · Ethical Hacker certification (desirable) · GDPR and ISO 27001 framework PERSONAL ATTRIBUTES · Motivated self-starter · Customer-facing skills · Problem solving skills · Attention to detail · Personable and professional manner · Process orientated · Humble We actively encourage applications from individuals with disabilities and try to provide access, adjustments, equipment, or other practical support where required. We welcome applications from people with backgrounds that are traditionally underrepresented in tech and truly believe diversity is the key to creativity and innovation.