Remote MXDR Security Engineer II

Summary

Join BlueVoyant as a Security Engineer II to utilize expertise in Microsoft Cloud security technologies and SIEM platforms to enable MDR solutions in customer environments.

Requirements

• At least five years of technical experience with Microsoft Cloud Security technologies or other equivalent SIEM and XDR solutions
• Strong experience with Azure Cloud technologies
• Experience in query languages and/or script development (KQL, SPL, SQL, Powershell, etc.)
• Knowledge and familiarity of enterprise IT systems in relation to cyber security
• Hands-on engineering experience with SIEM and/or XDR technologies
• Excellent communication skills to work in a dynamic and fast-paced team environment

Responsibilities

• Work on Microsoft Sentinel and/or Defender project implementations for customers (remotely), starting with design and architecture, deployment, and use case tune-up
• Create and develop new detection, automation, and reporting use cases per customer requirements
• Define and assist in the creation of operational and executive security reports and dashboards
• Participate in research and development activities with the goal of process improvement and new product/feature enhancements
• Participate in ongoing support activities for client facing environments to help mature and maintain our MDR practices
• Work on XDR integration activities across the Microsoft and Azure product stacks

Preferred Qualifications

• Hands-on Engineering experience with Microsoft Sentinel
• Hands-on engineering experience of Microsoft Defender security
• Experienced in customer-facing roles
• Expertise in Kusto Query Language
• Expertise in Azure Logic Apps, Function apps, and other Azure technologies
• Incident investigation and response skill set
• Proficient in Python, PowerShell or C#/.NET
• Proficient in Linux configuration and common administration tasks