Expoint - all jobs in one place

Finding the best job has never been easier

Limitless High-tech career opportunities - Expoint

EY TC-CS-Cyber Detection Response-Sentinel-Senior 
India, Karnataka, Bengaluru 
402922150

29.08.2024

Key Capabilities:

  • Should have experience in designing the deployment architecture for MS Sentinel
  • Capable of supporting customer requirements in multi-tenant environments
  • Previous experience in administration and management of SIEM related activities using MS Sentinel
  • Experience on SIEM migration from an existing SIEM tool to Azure Sentinel
  • Should have experience developing SOAR playbooks using Logic Apps
  • Be able to perform maturity assessment of an existing MS Sentinel environment
  • Hold productive discussions with the client to gather requirements
  • Act as a security consultant to provide solutions to clients using MS Sentinel
  • Should have in depth knowledge of MS Sentinel concepts and its functionalities.
  • Should have strong hands-on experience in:
    • A. Installation, administration and troubleshooting of OMS/AMA agent.
    • B. Use case creation using KQL
    • C. Configuration of Analytic Rules
    • D. Developing workbooks, SOAR playbooks and notebooks
    • E. Log integration with different sources both cloud and on-prem
    • F. Custom parser development
  • Supporting presales initiatives with regards to Microsoft Security such as answering RFPs, client presentations, demos.
  • If required should be able to lead a team on deployment/migration activities.

Qualification & Experience:

  • 5-7 years of experience in Cyber Security
  • In depth experience in Microsoft Sentinel and Logic Apps SOAR
  • Good to have knowledge of other MS Security Technologies like Microsoft 365 Defender and Defender for Cloud
  • Capable of leading security projects as a consultant.
  • Good business acumen to understand client requirements and build strong relationships.
  • Strong oral, written and listening skills are an essential component to effective consulting.
  • Certifications related to Azure and core security related discipline (CEH, Security+, etc.) will be an added advantage.



EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.