Cybersecurity Engineer

Why choose Logicalis?          

As Architects of Change, Logicalis' focus is to design, support and execute clients' digital transformation by uniting their vision with their technology expertise and industry insights. The company, through its deep understanding of key IT industry drivers such as security, cloud, data management and IoT, can address customer priorities such as revenue growth and business, operational efficiency, innovation, risk and compliance, data governance and sustainability. 
 

We strengthen our purpose: to design, support, and execute our customers' digital transformation by converging their vision with our technological expertise and knowledge of the industry. The brand refresh underpins both the evolution of Logicalis’ positioning as well as our strategic vision for growth. 

Your primary focus will be to work with solutions in our portfolio which deal with: 

• Threat Protection - Microsoft Defender for Endpoint/Server and Threat Intelligence 
• Security Operations Centre Engineering – Microsoft Sentinel, IBM Qradar, Devo, Splunk 
• Identity and Access Management - Active Directory & Microsoft Entra ID 
• Security Management - Microsoft Defender XDR, Azure Policy, Microsoft Defender for Cloud. 
• Secured Connectivity – Microsoft Entra, Zscaler, Cisco, Cloudflare 
• Integration & Log Ingestion – Azure Arc, CEF, Syslog, API 

Accountabilities 

• Technical Consultancy – Designing and implementing Microsoft security solutions to optimize existing technology stacks in alignment with business needs 
• Lead SIEM & XDR engineering activities 
• Remote and on-site deployment, troubleshooting, and system integration 
• Deliver security workshops or training 
• Work on POC and production deployments 
• Integrate cloud applications with security products. Troubleshoot integration issues. 
• Provide L3 technical consultancy & support to clients 
• Assist with pre-sales activities 
• Provide design & build document 

Qualifications 

• Preferred relevant qualification: CISSP / CompTIA Security+ / CEH / SC-900 / SC-200 / AZ-500 / AZ-104 / AZ 305 
• Excellent communication and presentation skills 
• Relevant experience in deployment and technical support of multiple security solutions 
• Ability to handle multiple projects simultaneously 
• Experience with deployment of SIEM platform (Analytic Rules, MITRE ATT&CK framework, SOAR) 
• Proficient with landing zone & routing/switching concepts on Azure 

Experience working with some or all technologies below 

• Microsoft Entra ID deployment/configuration, plus Active Directory Schema and Forest configuration  
• Microsoft Sentinel or any SIEM with SOAR capabilities  
• Microsoft Defender XDR & Defender for Cloud stack  
• Microsoft Windows Server & Ubuntu/Red Hat Linux servers  
• Group Policy Management and Deployment  
• Microsoft InTune or any MDM solutions  
• Log management solutions such as Splunk, LogRhythm or AlienVault  
• Threat Intelligence & Digital Risk Protection  
• Vulnerability Management such as Qualys, Tenable, Radar7 
• Other cloud or SaaS-based security technologies