Junior Microsoft Detection Engineer - Remote

Overview

The Junior Microsoft Detection Engineer will be responsible for helping identify, investigate, and mitigate endpoint threats within customer environments using Microsoft security technologies. The role involves leveraging Microsoft Defender, Microsoft Sentinel, and other security solutions to enhance the capabilities of SilverSky's security operations team in detecting and responding to emerging threats.

In Short

• Perform threat hunting across Microsoft 365, Azure environments, and on-premises endpoints.
• Work with the security operations team to build runbooks, playbooks, and automations around Microsoft technologies.
• Help maintain customer Sentinel SIEM environments.
• Facilitate training for security operations team on Microsoft tools and workflows.
• Perform threat hunting exercises using Microsoft Defender XDR and Sentinel.
• Assist in developing and executing custom detection rules in KQL.
• Collaborate with incident security operations teams to manage and resolve incidents.
• Create and improve threat detection strategies based on intelligence.

Requirements

• Knowledge of Microsoft Defender, Microsoft Sentinel, and Microsoft for Defender Cloud.
• Experience with endpoint security, incident detection, and response processes.
• Basic exposure in KQL for writing queries and conducting investigations.
• Understanding of exposure management and security vulnerability assessment tools.
• Familiarity with Windows, Linux, and mobile endpoint security.
• Understanding of cloud security concepts and Azure services.
• Ability to analyze and mitigate security threats and incidents.
• Excellent communication skills for collaboration with stakeholders.
• Current Microsoft SC-200 certification encouraged.

Benefits

• Join a passionate team in the cyber security field.
• Opportunity to work with advanced technologies.
• Engage in continuous learning and professional development.
• Work in a dynamic and collaborative environment.