Microsoft Sentinel Engineer
Bogota
Applications have closed
Amadeus
Discover how Amadeus' platform and technology help airlines, travel agencies, hotels and others connect, do business, and deliver better travel experiences.Job Title
Microsoft Sentinel EngineerAbout Your Business Area/Department:
Our mission is to Provide cross-organizational security operations to predict, detect and react to actual security incidents.
Summary of the role:
We are seeking a talented and motivated Microsoft Sentinel Engineer to join our Global SOC platform engineering team. The successful candidate will be responsible for supporting our multi-tenant Azure Security data lake platforms, developing and tuning advanced detection rules alerts using modern methods such as UEBA and Risk-based alerting, and supporting Incident Response activities and Purple Teaming exercises as a Subject Matter Expert (SME). This position offers a fantastic opportunity to join an elite Security Operation Center and work in a dynamic, fast-paced environment with a group of experienced and talented professionals.
In this role you’ll:
Support and manage our multi-tenant Azure Security data lake platforms, ensuring their availability, performance, and security.
Design, develop, and tune advanced detection rules using modern methodologies such as User & Entity Behavior Analytics (UEBA) and Risk-based alerting to generate high confidence security alerting.
Create and maintain threat hunting playbooks leveraging tools such as Jupyter notebooks
Support Incident Response activities and Purple Teaming exercises as Subject Matter Expert (SME).
Stay current with industry best practices, emerging threats, and response techniques, continuously improving the team's ability to detect and respond to cyber incidents.
Provide mentorship and guidance to other team members on how to use Microsoft Sentinel and Microsoft Defender suite.
Continuously monitor and improve the security posture of our platforms.
About the ideal candidate:
Strong experience with Microsoft Sentinel is required, 3 years or more.
Proven experience with Microsoft Defender (MDI, MDO, MDC, etc.) is essential.
Demonstrable experience in Detection Engineering and Detection as Code principle is necessary.
Experience in developing sophisticated threat detection rules and conducting incident investigations.
Proficiency in using scripting/programming languages for automation and integration with various security tools and APIs.
Familiarity with using Jupyter notebooks or similar technology for data analysis and threat hunting.
Excellent oral and written communication skills, with the ability to articulate technical concepts to a diverse audience.
Background in Purple Teaming exercises, both designing and executing scenarios, is desirable.
Bonus experience for working with other major SIEM tools such as SPLUNK.
Additional bonus experience for working within cloud environments such as GCP and AWS, with a focus on their security tools and features.
What we can offer you:
🎯 A critical mission and purpose - At Amadeus, you will be powering the future of travel and pursuing a critical mission and extraordinary purpose.
🌎 A truly global DNA - Everything at Amadeus is global, from our people to our business, which translates into our footprint, processes, and culture.
🎓 Great opportunities to learn - Learning happens all the time and in many ways at Amadeus, through on-the-job training, formal learning activities, and day-to-day interactions with colleagues.
🤗 A caring environment - Amadeus fosters a caring environment, nurturing both a fulfilling career and personal and family life. We care about our employees and strive to provide a supportive work environment.
💰 A complete rewards offer - Amadeus provides attractive remuneration packages, covering all essential components of a competitive reward offer, including salary, bonus, equity, and benefits.
🌟 A flexible working model - We want our employees to do their best work, wherever and however it works best for them.
🌈 A diverse and inclusive community - We are committed to leveraging our uniquely diverse population to drive innovation, creativity, and collaboration across our organization.
📈 A Reliable Company - Trust and reliability are fundamental values that drive our actions and shape long-lasting relationships with our customers, partners, and employees.
Diversity & Inclusion
Amadeus aspires to be a leader in Diversity, Equity and Inclusion in the tech industry, enabling every employee to reach their full potential by fostering a culture of belonging and fair treatment, attracting the best talent from all backgrounds, and as a role model for an inclusive employee experience.
Amadeus is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to gender, race, ethnicity, sexual orientation, age, beliefs, disability or any other characteristics protected by law.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics APIs Automation AWS Azure Cloud GCP Incident response Scripting Sentinel SIEM SOC Splunk Threat detection
Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Salary bonus
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.