Azure Security Engineer

D-ploy is an IT and Engineering Solutions company with operations throughout the EMEA region including Switzerland, Germany, Czech Republic, Austria, the UK, as well as the USA.

We pride ourselves on delivering innovative and superior services and solutions to numerous industry-leading clients. By building relationships and trusted partnerships within the IT community, we optimize our customer’s IT productivity and contribute to the organization’s success and value.

We are interested in talking to engaging, flexible, and solution-oriented individuals who are looking to become a part of a dynamically growing and international organization. We are focused on creating value where IT counts, join us!

Responsibilities

• • Examine and evaluate the current Azure Sentinel rules in place.
  • Identify any deficiencies, inefficiencies, or obsolete practices within the existing ruleset.
  • Recommend enhancements for reconfiguring the Sentinel rules to meet current industry standards and best practices.
  • Execute modifications to the rules as agreed with the internal security team.
  • Conduct testing and validation of the revised Sentinel rules to confirm their proper and effective operation.
  • Work alongside the internal security team to evaluate the current security monitoring framework.
  • Suggest improvements for the security monitoring processes and tools, encompassing Azure Sentinel and other SIEM systems.
  • Assist in configuring and optimizing security monitoring tools to bolster threat detection and response capabilities.
  • Offer guidance on best practices for ongoing monitoring and threat hunting.
  • Support the internal security team in analyzing security data and logs gathered from various sources.
  • Provide insights and recommendations derived from the analysis to enhance security posture and mitigate risks.
  • Create custom queries, dashboards, and reports in Azure Sentinel to deliver actionable security intelligence.
  • Assist the internal team in addressing security incidents and performing post-incident analysis.
  • Engage in regular meetings with the internal security team to review progress, discuss challenges, and plan future activities.
  • Document all activities conducted, including modifications to Sentinel rules, configurations, and analyses, while maintaining an updated knowledge base.
  • Deliver regular status reports and updates to the internal security team.
  • Updated and refined Azure Sentinel rules.
  • Documentation detailing all changes and recommendations for Sentinel rules and security monitoring practices.
  • Custom queries, dashboards, and reports created in Azure Sentinel.
  • Knowledge transfer sessions conducted with the internal security team.
  • Consistent status reports and updates provided.

• 5+ years of experience in IT Security, particularly within Azure environments.
• Strong understanding of Azure Sentinel and its functionalities.
• Experience with SIEM tools, ideally Azure Sentinel or similar.
• Knowledge of security frameworks such as NIST, ISO 27001, or similar.
• Experience in designing and implementing security policies and procedures.
• Excellent analytical and troubleshooting skills with a focus on incident response.
• Strong communication skills in English, both written and verbal.
• Relevant security certifications (e.g., Azure Security Engineer Associate, CISSP, etc.) are a plus.
• Ability to work independently and collaboratively within a team.

• Fluent in English (spoken & written)
• Candidates must provide Criminal record extract not older than three months

• Flexible working conditions

• Minimum 5 weeks of vacation
• Paid sick days
• Meal vouchers
• Vouchers (B-day voucher, wedding, and new born surprise)
• Contributions to wellness programs (multisport card)
• Fishing for Friends program – our referral program
• Refreshments in the D-ploy office
• Further development and professional advancement
• Friendly and international working environment 
• Company-sponsored events