Azure Sentinel Identity Engineer
100% Remote
Full Time Mid-level / Intermediate Clearance required USD 35K - 65K *
True Zero Technologies
True Zero specializes in creating cybersecurity programs and software solutions that enable agency leaders to run a proactive defense, with better intelligence and more efficient collaboration.We are seeking a detail-oriented Azure Sentinel Identity Engineer to enhance our cybersecurity team. The ideal candidate will specialize in utilizing Azure Sentinel, particularly its User and Entity Behavior Analytics (UEBA) functionality, to monitor and analyze user activities and detect anomalies. This role involves writing and troubleshooting KQL statements for effective data visualization, implementing Azure Sentinel logging and auditing within cloud infrastructures, and maintaining thorough documentation. The engineer will collaborate closely with team members and stakeholders to ensure clear communication and will develop workbooks and playbooks tailored to security and IT operations.
Key Responsibilities
- Utilize KQL statements to create insightful data visualizations, focusing on user and entity behavior analytics to detect security threats.
- Integrate and manage Azure Sentinel's logging and auditing capabilities to secure cloud infrastructure.
- Develop and maintain detailed onboarding documentation for Azure Sentinel and its data sources, with a focus on UEBA features.
- Collaborate effectively with team members and stakeholders to maintain clear and concise communication.
- Design and upkeep Azure Sentinel workbooks and playbooks, incorporating user and entity behavior analytics to enhance threat detection and response.
- Leverage threat intelligence feeds and build automated workflows tailored to various security scenarios.
- Partner with analysts to develop incident response playbooks and strategies, incorporating insights from UBA.
- Generate and adapt SIEM/SOAR use cases based on evolving customer requirements, ensuring seamless integration of new data sources and maintaining existing ones.
- Scripting and automation using Bash and PowerShell to streamline security processes.
- Conduct in-depth security investigations and provide training on investigative techniques, with a focus on user behavior analytics.
Qualifications
- Minimum 5 years of related experience in the cyber security field and at least 2 years of Azure Sentinel experience.
- Proven experience with Azure Sentinel, especially in deploying and utilizing its User and Entity Behavior Analytics (UEBA) functionality.
- Strong scripting skills in Bash and PowerShell, with a background in creating and reviewing security scripts.
- Demonstrable ability to perform comprehensive security investigations and to train personnel in these techniques.
- Proficiency in managing AWS and Azure cloud environments.
- Advanced skills in Python, in addition to Bash and PowerShell.
- Active federal government-issued security clearance, or ability and willingness to submit to the clearance/background investigation process
We’re actively searching for talented security and technology practitioners who are ready to experience the True Zero difference. As a True Zero team member, you'll enjoy:
- Competitive salary, paid twice per month- Best in class medical coverage- 100% of medical premiums covered by True Zero- Company wide new business incentive programs- Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)- 3 weeks of PTO starting + 11 Paid Holidays Annually- 401k Program with 100% company match on the first 4%- Monthly reimbursement of Cell Phone and Home Internet costs- Paternity/Maternity Leave- Investment in training and certifications to broaden and deepen your technical skills
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Audits Automation AWS Azure Bash Clearance Cloud Incident response PowerShell Python Scripting Security Clearance Sentinel SIEM SOAR Threat detection Threat intelligence
Perks/benefits: 401(k) matching Career development Competitive pay Health care Medical leave Parental leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs