Jobs via Dice
Cyber Security Engineer - Microsoft Sentinel (SIEM / SOAR / UEBA)
Jobs via Dice, Austin, Texas, us, 78716
Cyber Security Engineer - Microsoft Sentinel (SIEM / SOAR / UEBA) - State Client exp Must
1 day ago Be among the first 25 applicants
Get AI-powered advice on this job and more exclusive features.
Dice is the leading career destination for tech experts at every stage of their careers. Our client, Cogent Data Solutions LLC, is seeking the following. Apply via Dice today!
Role:
Cyber Security Engineer II – Microsoft Sentinel (SIEM / SOAR / UEBA)
Location:
Austin, TX - Onsite
Job Description:
The Cyber Security Engineer II performs advanced (senior-level) software development work supporting enterprise cybersecurity initiatives. This role focuses on designing, developing, testing, and optimizing Microsoft Sentinel capabilities, including SIEM engineering, SOAR automation, UEBA analytics, and platform integrations.
Key Responsibilities:
Design, develop, test, and deploy Microsoft Sentinel analytics rules, automation playbooks, and workbooks.
Build SOAR automation workflows using Azure Logic Apps, Azure Functions, and REST APIs.
Develop UEBA models, anomaly detection rules, and behavior-based analytics using KQL.
Integrate Sentinel with EDR, IAM, firewalls, ticketing systems, and other security platforms.
Design and maintain log ingestion pipelines, custom connectors, and data normalization logic.
Tune SIEM detections to reduce false positives and align with MITRE ATT&CK and Zero Trust principles.
Support incident response, threat hunting, and advanced security investigations.
Use DevOps pipelines (Azure DevOps, GitHub) for version control and deployment.
Create and maintain technical documentation, runbooks, and design artifacts.
Collaborate with cybersecurity, infrastructure, and application teams to meet security and compliance requirements.
Minimum Requirements:
Graduation from an accredited four-year college or university with major coursework in Computer Science, Computer Information Systems, Software Engineering, Cybersecurity, or a related field.
Two (2) years of full-time experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering.
Preferred:
Three (3) or more years of hands‑on technical experience with Microsoft Sentinel.
Experience developing UEBA models, anomaly detection rules, and behavior‑based analytics.
Experience building Security Automation (SOAR) playbooks.
Microsoft certifications such as: SC-200 – Security Operations Analyst, AZ-900 or AZ-104, SC-100 or SC-300.
Experience integrating Sentinel with EDR, IAM, firewalls, and ticketing systems.
Experience with DevOps pipelines (GitHub, Azure DevOps).
Experience working in a government, healthcare, or regulatory environment.
Seniority level:
Mid‑Senior level
Employment type:
Full‑time
Job function:
Information Technology
Industries:
Software Development
#J-18808-Ljbffr
Get AI-powered advice on this job and more exclusive features.
Dice is the leading career destination for tech experts at every stage of their careers. Our client, Cogent Data Solutions LLC, is seeking the following. Apply via Dice today!
Role:
Cyber Security Engineer II – Microsoft Sentinel (SIEM / SOAR / UEBA)
Location:
Austin, TX - Onsite
Job Description:
The Cyber Security Engineer II performs advanced (senior-level) software development work supporting enterprise cybersecurity initiatives. This role focuses on designing, developing, testing, and optimizing Microsoft Sentinel capabilities, including SIEM engineering, SOAR automation, UEBA analytics, and platform integrations.
Key Responsibilities:
Design, develop, test, and deploy Microsoft Sentinel analytics rules, automation playbooks, and workbooks.
Build SOAR automation workflows using Azure Logic Apps, Azure Functions, and REST APIs.
Develop UEBA models, anomaly detection rules, and behavior-based analytics using KQL.
Integrate Sentinel with EDR, IAM, firewalls, ticketing systems, and other security platforms.
Design and maintain log ingestion pipelines, custom connectors, and data normalization logic.
Tune SIEM detections to reduce false positives and align with MITRE ATT&CK and Zero Trust principles.
Support incident response, threat hunting, and advanced security investigations.
Use DevOps pipelines (Azure DevOps, GitHub) for version control and deployment.
Create and maintain technical documentation, runbooks, and design artifacts.
Collaborate with cybersecurity, infrastructure, and application teams to meet security and compliance requirements.
Minimum Requirements:
Graduation from an accredited four-year college or university with major coursework in Computer Science, Computer Information Systems, Software Engineering, Cybersecurity, or a related field.
Two (2) years of full-time experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering.
Preferred:
Three (3) or more years of hands‑on technical experience with Microsoft Sentinel.
Experience developing UEBA models, anomaly detection rules, and behavior‑based analytics.
Experience building Security Automation (SOAR) playbooks.
Microsoft certifications such as: SC-200 – Security Operations Analyst, AZ-900 or AZ-104, SC-100 or SC-300.
Experience integrating Sentinel with EDR, IAM, firewalls, and ticketing systems.
Experience with DevOps pipelines (GitHub, Azure DevOps).
Experience working in a government, healthcare, or regulatory environment.
Seniority level:
Mid‑Senior level
Employment type:
Full‑time
Job function:
Information Technology
Industries:
Software Development
#J-18808-Ljbffr