Dieses Projekt ist archiviert und leider nicht (mehr) aktiv.
Sie finden vakante Projekte hier in unserer
Projektbörse.
Schlagworte
Siem
Sicherheitsbestimmungen
Automatisierung
Incident Response
Python
Windows Powershell
Public Cloud
Anforderungsanalyse
Softwareentwicklung
Scripting
Beschreibung
- At least 5+ years of IT experience, with a minimum of 3+ years of hands-on experience within security focused on deploying, configuring, and troubleshooting Microsoft Sentinel SIEM and MS Defender.
- Lead the charge in integrating diverse log sources onto our Microsoft Sentinel SIEM platform, ensuring comprehensive visibility into security events.
- Utilize Scripting languages such as PowerShell, Python, and KQL to automate operational tasks and improve system efficiency.
- Hands-on experience with Logic App development.
- Develop and refine custom use cases to enhance our threat detection and response capabilities.
- Collaborate closely with our Managed Security Services Providers (MSSP) to strengthen our overall security posture.
- Proactively analyse external threat intelligence sources to identify emerging risks and trends.
- Assist in the incident response processes to contain, remediate, and recover from security incidents.
- An understanding of threat detection and response is critical, including the ability to create, manage, and investigate alerts, understanding security threats, anomalies, and breach patterns.
- Certifications in public cloud will be an added benefit.