SOC Engineer - Sentinel

Job Description

Reporting to the SOC Engineering & Architecture Manager, the SOC Engineer, Sentinel, is a professional with a solid foundation in SOC operations.

Responsibilities:

• Sentinel SIEM management services within the SOC environment.
• Govern SOC critical log sources, ensuring their proper functionality and integration with Sentinel SIEM.
• Log source issues, coordinate with customers to diagnose and resolve them in a timely manner and optimize telemetry within the Sentinel environment to improve data collection, correlation, and reporting.
• The performance of the Sentinel SIEM according to established best practices.
• In continuous process improvements to increase SOC efficiency and effectiveness.
• Regular and accurate reports on Sentinel services and SOC operations to relevant stakeholders.

Skills:

• Knowledge and hands-on experience with Sentinel SIEM and other related technologies such as MS Defender.
• Understanding of cloud and network technologies, essential for efficient log source onboarding.
• Technical capabilities in a complex, fast-paced SOC environment.
• To diagnose and troubleshoot log source issues related to cloud and network infrastructures.
• Understanding of SOC operations, cybersecurity principles, and best practices.
• Problem-solving skills and the ability to make decisions under pressure.
• To collaborate effectively with a variety of team members, including interfacing with customers to resolve issues.
• Proficiency in written and verbal communication

Certifications:

Must have:

• in SC-200
• in AZ 500

Optional:

• Certifications like AWS Certified Solutions Architect, Google Professional Cloud Architect, or Microsoft Certified: Azure Solutions Architect Expert.
• Certifications such as CCNA or CCNP are advantageous.

Educational Experience:

• Degree in computer science, Information Technology, Cybersecurity, or a related field.
• Minimum of 4-5 years of experience in SOC operations, with significant experience in Sentinel SIEM management.
• Experience in a technical role within a SOC or similar cybersecurity environment.