Sentinel SecOps Engineer – Sentinel, KQL, EDR, SOC Tooling – London (3 days onsite) - £450 - £500 p/day Outside IR35

I am working with an exceptional Microsoft Security Solution Provider, and they have an urgent requirement for a Sentrial SecOps Engineer to join their onsite team at one of their longest standing Financial Services clients in the Bank area of London.

They have recently rolled out Sentinel as the Siem including for Endpoint and they currently have many log sources going into it – Forcepoint, Citrix and Fortinet being some of them. You will need to build all the analytical rile within the log sources and help to support the whole estate.

It is essential that you have exceptional KQL skills, not just be able to follow code, but create it from scratch and spot errors and changes in code as an when you review it. They need someone who is hungry to find the next issue and solve it or create something new to improve. Any EDR experience would be good preferable Windows.

You will be expected on site 3 days a week the hours are 9-5.30/6 and the remainder of the week will be at home – this may reduce to 2 later in the contract but that is not guaranteed.

Required:

• COMPTIA Security+ (essential)


• Exposure working with a previous managed security provider or within an MSSP environment


• Strong working knowledge of KQL (essential)


• Experience of using SOC tooling (SIEM and EDR solutions) (essential)


• Previous experience working within financial services


• Experience using ITSM tools


• Knowledge and understanding of the phases in incident response and Cyber Kill Chain


• Good blue/purple/red team experience

Please hit the button to Apply and / or call Will Martin 020 3950 9977 at InfraView for further info.

If this role is not for you, please Register with us letting us know your preferences and will be in touch when the right role comes in.

Sentinel SecOps Engineer – Sentinel, KQL, EDR, SOC Tooling – London (3 days onsite) - £450 - £500 p/day Outside IR35