Security Engineer ll – Microsoft Sentinel & Defender XDR
Tasks
- Administer and maintain Microsoft Sentinel and Defender XDR environments
- Assist in tenant standardization
- Conduct automation testing and change management
- Contribute to documentation, runbooks, and SOPs
- Develop and automate response playbooks using Azure Logic Apps
- Develop and tune analytics rules and detection logic
- Document incident investigations and platform issues
- Integrate Defender data sources and troubleshoot issues
- Maintain dashboards and detection libraries
- Map detections to MITRE ATT&CK Framework
- Monitor alerts and perform Tier 2 triage
- Monitor log ingestion pipelines and data connector status
- Onboard new data sources and validate connectivity
- Participate in training and knowledge sharing
- Stay updated on Microsoft security roadmap
- Support platform intake process
Perks/Benefits
- N/A
Skills/Tech-stack
Automation | Azure AD | Azure Log Analytics | Azure Logic | Azure Logic Apps | Defender XDR | Incident Response | KQL | Linux logs | Log Analytics | Logic Apps | MITRE ATT&CK | Microsoft Defender | Microsoft Defender XDR | Microsoft Sentinel | Networking Fundamentals | Powershell | Python Scripting | REST APIs | Security Tools | Threat detection | Windows Logs
Education
Roles
Related jobs
-
Security Analyst, Cloud Threat Detection INR 1000K-1500KAdversary tactics | Adversary tactics and techniques | Detection Systems | HTTP | Host ForensicsMid-level Full TimeBengaluru, Karnataka, India; Hyderabad, Telangana, India7h ago
-
Senior - Cyber Transformation INR 2500K-4000KActive Directory | Apex One | Bash | Carbon Black | CrowdStrikeSenior-level Full TimeNoida, Uttar Pradesh, India1d ago
-
Security Engineer II, Managed Microsoft Sentinel INR 800K-1250KAuthentication and Authorization | Azure Lighthouse | Azure Log Analytics | Azure Logic | Azure Logic AppsMid-level Full TimeBengaluru, Karnataka1d ago
-
Security Operations Engineering INR 950K-1250KActive Directory | Authentication | Authorization | Azure Active Directory | Azure MonitorMid-level Full TimeBengaluru, KA, IN1d ago
-
Associate Lead Consultant - Cloud Security Job INR 1327K-2000KAWS | Access Control | Automation and response | Azure | Azure MonitorFlexible work arrangements | Inclusive work environment | Mentored training | Positive work culture | Stable employmentMid-level Full TimeBangalore, KA, IN1d ago
-
Lead Information Security Engineer INR 500K-800KAccess Management | Active Directory | Agile | Ansible | AuthenticationSenior-level Full Time110382-IND-HYDERABAD-INTL HYD WF CENTRE BLK 1B …1d ago
-
Senior Specialist- Cyber Security Architecture INR 2500K-3487K800-53 | AWS | Cloud Security | Cloud platform | CloudFormationAdditional voluntary benefits | Disability programs | Life insurance | Private medical care | Tailored financial programsSenior-level Full TimeIN-MH-Pune-Cummins India Office Campus, 8th floor …1d ago
-
Staff Security Engineer INR 2542K-3440KAWS | Cloud Security | Cloud platform | Data Engineering | Detection engineeringSenior-level Full TimeBangalore, Karnataka, India2d ago
-
Application Security | Application Security Groups | Azure CLI | Azure Firewall | Azure PolicyEntry-level Full TimeGurgaon, Haryana, India2d ago
-
Application Security | Application Security Groups | Azure CLI | Azure Defender | Azure Defender for CloudEntry-level Full TimeGurgaon, Haryana, India2d ago
-
Application Security | Application Security Groups | Azure CLI | Azure Firewall | Azure PolicyEntry-level Full TimeBangalore, Karnataka, India2d ago
-
Splunk SIEM INR 1750K-2156KAPI Integration | Alerting | CIM | Capacity Planning | Correlation searchesCareer advancement | Casual leave | Employee assistance program | Gratuity | Learning and development opportunitiesMid-level Full TimeBangalore, Karnataka (In Office)2d ago
-
AIDE | AWS Directory | AWS Directory Service | ClamAV | Cloud SecurityConstant learning | Flexible working models | Health and wellbeing benefits | Office collaboration | Skill growthSenior-level Full TimeGurgaon, IN, 1220022d ago
-
Cyber Security Specialist (AppSec) INR 1244K-2500KAWS | Access Management | Application Security | Architecture Review | AzureIn-office collaboration days | Remote work flexibilityMid-level Full TimeIN-Gurugram-Office, India2d ago
-
Access Management | Application Security | Application Security Risk Assessment | Application Security Threat Management | AuthenticationSenior-level Full Time111443-IND-HYDERABAD-INTL HYD WF CENTRE BLK B8 …2d ago
-
Senior Information Security Engineer - Application Security INR 1170K-2200KAccess Management | Application Security | Authentication and directory services | Azure | Business ContinuitySenior-level Full Time110380-IND-BENGALURU-INTL BLR Twr-1&2 CARNATION, India2d ago
-
Application Security Engineer INR 2160K-2500KApplication Security | Application Security Testing | Bash | Black-Duck | Bug BountyFlexible work hours | Medical, dental, and vision coverage | Paid parental leave | Paid time off | Retirement plansMid-level Full TimeRemote India R3d ago
-
Data Security Engineering Specialist INR 1050K-1700KAWS | Access Governance | Cloud Security | DLP Monitoring | Data Access GovernanceHybrid work | Reasonable accommodation for applicants | Relocation assistance | Remote work optionMid-level Full TimeIN: Pune - Building 5, India3d ago
-
ApplSec Lead INR 2500K-3100KAnalytics | Antivirus | Attack analysis | Automation | Cloud SecurityBe Well programs | Certification programs | Coaching | Continuous feedback | Hands-on trainingSenior-level Full TimeNoida India (INNOIGAL) WeWork Galaxy SO3d ago
-
Senior Information Security Engineer-Purple Team INR 880K-1250KAccess Management | Authentication Services | Business Continuity | Cloud Security | Content FilteringSenior-level Full Time110380-IND-BENGALURU-INTL BLR Twr-1&2 CARNATION, India3d ago
-
Lead Information Security Engineer INR 600K-800KAccess Management | Active Directory | Authentication | Availability | Azure Active DirectorySenior-level Full Time110380-IND-BENGALURU-INTL BLR Twr-1&2 CARNATION, India3d ago
-
Splunk SIEM Engineer INR 1000K-1700KAzure | CI/CD | Correlation searches | Cribl Stream | Data modelsMid-level Full TimeChennai, DLF IT Park, India3d ago
-
Cyber Defence - Siem Content Development Specialist - Vois INR 938K-1250KAWS | Adversary simulation | Agile | ArcSight | ChronicleMid-level Full TimePune, IN3d ago
-
Identity Security Operations Engineer INR 1400K-1820KAPI | API workflows | Access Management | Automation | Azure ADGlobal team collaboration exposureEntry-level Full TimeIndia4d ago
-
Software Engineer II INR 2250K-2400K.NET | ASP.NET | AWS | Angular | AuthenticationOn-call support rotationSenior-level Full TimeHyderabad, TS, IN4d ago