Security Engineer

Experience: years


  • Must have deployment experience in Microsoft Sentinel solution.
  • Az 500 or SC 200 certification
  • Must have knowledge on creating custom use cases on Microsoft Sentinel.
  • Must have skills to create custom automation playbooks on Microsoft Sentinel.
  • Must have handled at least 2-3 Microsoft sentinel deployment projects.
  • Must have integrated data sources using Rest API, CEF collector, AMA agent, logstash methods.
  • Good understanding of KQL query language.
  • Good understanding of logs from various data sources such as firewall, proxy, waf, web servers, application servers, security devices, etc.
  • Having knowledge of Microsoft defender for endpoint and servers would be an added advantage.