The job posting is for a SIEM Security Engineer at 29, located in Rahway, NJ, focusing on the management and optimization of Microsoft Sentinel within a hybrid work environment. The role involves collaboration with various teams to ensure effective security monitoring and incident response across a complex enterprise setup
Job Summary
This role is responsible for designing, deploying, and optimizing the Microsoft Sentinel platform within a global enterprise environment.
The engineer will leverage Cribl and Azure Data Explorer to manage high-volume log ingestion, filtering, and cost optimization.
Candidates must possess strong KQL skills to develop advanced analytics rules, hunting queries, and reduce false positives for SOC teams.
Matching Summary
Match Score: 85
The job posting is for a SIEM Security Engineer at 29, located in Rahway, NJ, focusing on the management and optimization of Microsoft Sentinel within a hybrid work environment. The role involves collaboration with various teams to ensure effective security monitoring and incident response across a complex enterprise setup.
Skills & Requirements
Must-have
Microsoft Sentinel platform management
Kusto Query Language (KQL) proficiency
Cribl log pipeline engineering
Azure Data Explorer (ADX) experience
Enterprise security telemetry integration
Nice-to-have
Sentinel SOAR Logic Apps automation
MITRE ATT&CK detection alignment
Python and PowerShell scripting skills
Zero-trust architecture exposure
Regulated industry experience
Key Requirements
Strong hands-on experience with Microsoft Sentinel
Advanced proficiency in Kusto Query Language (KQL)
Practical experience with Cribl for log routing
Experience with Azure Data Explorer (ADX)
Solid understanding of Windows, Linux, and cloud logs