4 days ago
Cybersecurity Engineer - Microsoft Sentinel
NTT DATA Europe & Latam
On Site
Full Time
RON 250,000
Iaşi, Iaşi, Romania
Job Overview
Job TitleCybersecurity Engineer - Microsoft Sentinel
Job TypeFull Time
CategoryCommerce
Experience5 Years
DegreeMaster
Offered SalaryRON 250,000
LocationIaşi, Iaşi, Romania
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
Who We Are
NTT DATA Romania is looking for passionate Engineers for designing and improving security solutions and to offer architecture consultancy within various projects and activities.
We are seeking a highly skilled and experienced Cybersecurity Engineer - Microsoft Sentinel at the senior level to join our dynamic team.
What You'll Be Doing
- Design, implement, and maintain Microsoft Sentinel deployments, ensuring optimal configuration, data ingestion quality, and alignment with organizational security objectives.
- Create, refine, and optimize detection rules, analytics, workbooks, and dashboards to support effective monitoring of cloud, hybrid, and on-premises environments.
- Develop advanced KQL queries to support threat detection, hunting, reporting, and operational efficiency.
- Build and maintain SOAR playbooks using Logic Apps to automate triage, response actions, and workflow orchestration.
- Lead threat hunting initiatives leveraging Microsoft Sentinel, Defender XDR suite data, and relevant threat intelligence sources.
- Produce comprehensive documentation, including use cases, detection logic, response procedures, runbooks, and architectural diagrams.
- Collaborate with SOC analysts, security engineers, cloud teams, and application owners to ensure cohesive incident response and coordinated remediation activities.
- Oversee the integration of new log sources, ensuring proper mapping, normalization, and adherence to governance and compliance standards.
- Conduct continuous tuning and performance optimization of alerts, analytic rules, and data connectors to improve signal-to-noise ratio.
- Provide guidance, mentorship, and technical leadership to junior team members and cross-functional IT staff.
- Linux proficiency
- Ansible/Terraform literate
- Available for 24x7 OnCall
- Effective communication and documentation skills (Visio preferred, any other diagraming tool is accepted).
What You'll Bring Along
- Bachelor’s degree in Information Security, Cybersecurity, Computer Science, or related field.
- Minimum 5-10 years of experience in a similar role
- Extensive hands-on experience administering and engineering solutions within Microsoft Sentinel, including custom analytics, automation, and log management.
- Strong proficiency in KQL with the ability to craft complex queries for detection, investigation, and reporting.
- Deep understanding of security monitoring, threat detection methodologies, and incident response practices.
- Deep understanding of log source onboarding in Sentinel.
- Practical experience with Microsoft Defender XDR solutions (Defender for Endpoint, Identity, Office 365, and Cloud Apps).
- Familiarity with cloud-native security architecture, particularly Azure services, identity management, and network security controls.
- Ability to translate technical concepts into clear, actionable guidance for various levels of stakeholders.
- Relevant certifications (e.g., SC-200, SC-100, AZ-500, CISSP, GIAC certifications).
- Experience integrating Sentinel with third-party log sources, SIEM platforms, and security tools.
- Knowledge of Python, Bash, PowerShell, or similar scripting languages to support automation and custom integrations.
- Background in SOC operations, threat hunting, detection engineering, or cloud security.
- Languages: English is mandatory, German an advantage
Key skills/competency
- Microsoft Sentinel
- KQL
- Threat Detection
- Incident Response
- SOAR Playbooks
- Azure Security
- Defender XDR
- Log Management
- Automation Scripting
- Security Architecture
How to Get Hired at NTT DATA Europe & Latam
- Research NTT DATA Europe & Latam's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor.
- Tailor your resume: Customize your resume to highlight experience in Microsoft Sentinel, KQL, and security architecture, aligning with NTT DATA's cybersecurity needs.
- Showcase your technical prowess: Be prepared to discuss your hands-on experience with Azure security services, Defender XDR, and scripting languages during technical interviews.
- Emphasize problem-solving and leadership: Provide examples of how you've solved complex security challenges and mentored junior team members, crucial for this senior role at NTT DATA.
- Highlight relevant certifications: Mention SC-200, SC-100, AZ-500, CISSP, or GIAC certifications to demonstrate your commitment to cybersecurity excellence.
Frequently Asked Questions
Find answers to common questions about this job opportunity
01What core Microsoft security technologies are essential for the Cybersecurity Engineer - Microsoft Sentinel role at NTT DATA Europe & Latam?
02How important is KQL proficiency for a Cybersecurity Engineer - Microsoft Sentinel at NTT DATA Europe & Latam?
03What is the scope of automation expected for a Cybersecurity Engineer - Microsoft Sentinel at NTT DATA Europe & Latam?
04Does the Cybersecurity Engineer - Microsoft Sentinel role at NTT DATA Europe & Latam involve threat hunting?
05What kind of team collaboration can I expect in the Cybersecurity Engineer - Microsoft Sentinel position at NTT DATA Europe & Latam?
Explore similar opportunities that match your background