Maddisoft
Maddisoft Immediate Opportunity
Maddisoft has the following immediate opportunity, let us know if you or someone you know would be interested. Send in your resume ASAP. – U.S. Citizens and those authorized to work in the U.S. are encouraged to apply. Send in resume along with LinkedIn profile without which applications will not be considered. Call us NOW! ***Visa sponsorship is available for this position. Job Title: Software Developer
Job location: Austin, Texas- Onsite
Interview mode: In person/MS Teams
Role Summary
Design, develop, and optimize Microsoft Sentinel SOAR, UEBA, and SIEM capabilities. Build automation, analytics, and integrations to improve security detection, response, and operational efficiency. Work independently on complex engineering tasks while collaborating with cross-functional security teams. Key Responsibilities
Design, develop, test, and deploy Microsoft Sentinel SOAR automation playbooks using Azure Logic Apps, Azure Functions, ARM templates, and REST APIs. Create automated workflows for alert enrichment, triage, incident response, notifications, and case management. Integrate Sentinel with third-party systems such as EDR, IAM, ticketing tools, email gateways, and firewalls. Develop UEBA detection rules, anomaly models, behavior-based analytics, and advanced hunting queries using KQL. Build and maintain analytics rules, data parsers, normalization logic, and entity behavior profiles. Design and implement custom data connectors, ingestion pipelines, dashboards, workbooks, and detection-as-code assets. Tune SIEM performance to reduce noise and align detections with MITRE ATT&CK and Zero Trust principles. Develop supporting scripts, APIs, and microservices using Python, PowerShell, .NET, or similar languages. Support CI/CD pipelines, DevOps practices, version control, and infrastructure-as-code. Create technical documentation, SOPs, architecture diagrams, and automation runbooks. Provide Tier III support and participate in incident reviews when required. Required Knowledge & Skills
Strong knowledge of Microsoft Sentinel, SOAR, UEBA, and SIEM engineering. Experience with Azure services including Logic Apps, Azure Functions, Event Hubs, Key Vault, and Azure AD. Proficiency in KQL and scripting/programming languages (Python, PowerShell, C#, JavaScript). Understanding of security operations, threat detection, and incident response. Familiarity with MITRE ATT&CK, NIST CSF, and Zero Trust concepts. Experience with API integrations, JSON/YAML, and Git-based version control. Strong troubleshooting, analytical, and communication skills. Minimum Qualifications
Bachelor s degree in Computer Science, Information Systems, Cybersecurity, or a related field. 2 years
of experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering. Preferred Qualifications
3 years
hands-on experience with Microsoft Sentinel. Experience developing UEBA models and SOAR automation playbooks. Experience integrating Sentinel with EDR, IAM, firewalls, and ticketing systems. Experience with DevOps pipelines (GitHub, Azure DevOps). Microsoft certifications such as SC-200, AZ-900/AZ-104, SC-100/SC-300. Experience in regulated or compliance-driven environments.
#J-18808-Ljbffr
Maddisoft has the following immediate opportunity, let us know if you or someone you know would be interested. Send in your resume ASAP. – U.S. Citizens and those authorized to work in the U.S. are encouraged to apply. Send in resume along with LinkedIn profile without which applications will not be considered. Call us NOW! ***Visa sponsorship is available for this position. Job Title: Software Developer
Job location: Austin, Texas- Onsite
Interview mode: In person/MS Teams
Role Summary
Design, develop, and optimize Microsoft Sentinel SOAR, UEBA, and SIEM capabilities. Build automation, analytics, and integrations to improve security detection, response, and operational efficiency. Work independently on complex engineering tasks while collaborating with cross-functional security teams. Key Responsibilities
Design, develop, test, and deploy Microsoft Sentinel SOAR automation playbooks using Azure Logic Apps, Azure Functions, ARM templates, and REST APIs. Create automated workflows for alert enrichment, triage, incident response, notifications, and case management. Integrate Sentinel with third-party systems such as EDR, IAM, ticketing tools, email gateways, and firewalls. Develop UEBA detection rules, anomaly models, behavior-based analytics, and advanced hunting queries using KQL. Build and maintain analytics rules, data parsers, normalization logic, and entity behavior profiles. Design and implement custom data connectors, ingestion pipelines, dashboards, workbooks, and detection-as-code assets. Tune SIEM performance to reduce noise and align detections with MITRE ATT&CK and Zero Trust principles. Develop supporting scripts, APIs, and microservices using Python, PowerShell, .NET, or similar languages. Support CI/CD pipelines, DevOps practices, version control, and infrastructure-as-code. Create technical documentation, SOPs, architecture diagrams, and automation runbooks. Provide Tier III support and participate in incident reviews when required. Required Knowledge & Skills
Strong knowledge of Microsoft Sentinel, SOAR, UEBA, and SIEM engineering. Experience with Azure services including Logic Apps, Azure Functions, Event Hubs, Key Vault, and Azure AD. Proficiency in KQL and scripting/programming languages (Python, PowerShell, C#, JavaScript). Understanding of security operations, threat detection, and incident response. Familiarity with MITRE ATT&CK, NIST CSF, and Zero Trust concepts. Experience with API integrations, JSON/YAML, and Git-based version control. Strong troubleshooting, analytical, and communication skills. Minimum Qualifications
Bachelor s degree in Computer Science, Information Systems, Cybersecurity, or a related field. 2 years
of experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering. Preferred Qualifications
3 years
hands-on experience with Microsoft Sentinel. Experience developing UEBA models and SOAR automation playbooks. Experience integrating Sentinel with EDR, IAM, firewalls, and ticketing systems. Experience with DevOps pipelines (GitHub, Azure DevOps). Microsoft certifications such as SC-200, AZ-900/AZ-104, SC-100/SC-300. Experience in regulated or compliance-driven environments.
#J-18808-Ljbffr