Shift Timing (Including time zone): 7 PM 4 AM IST
Experience Range: 3 - 5 years
Must Have Skills
- Hands-on Defender XDR experience in at least two Microsoft technologies, including:
- Defender for Endpoint (MDE)
- Defender for Identity (MDI)
- Defender for Office 365 (MDO)
- Defender for Cloud Apps (MDCA)
- Hands-on Microsoft Sentinel experience, including:
- Connecting Defender data sources
- Creating and tunning analytics rules
- Basic KQL
- Solid Windows / AD background to support Defender deployments:
- Prior technical consulting or customer-facing experience (Internal or external).
Bonus Experience
Experience with Logic Apps for building Sentinel playbooks
History with competitive security tools (Crowdstrike, Proofpoint, Mimecast, and etc)
Microsoft security certs (e.g., SC-300, SC-200, SC-100, AZ-500)
Security Copilot
Key Responsibilities
Implement and configure Defender XDR (all relevant Defender products) and Microsoft Sentinel in customer tenants.
Onboard And Integrate Signals From Defender Products Into Sentinel
Set up data connectors
Create and tune analytics rules and incidents
Assist with playbooks and basic automation
Support Pilot, Rollout, And Tuning Of
Defender for Endpoint policies
Defender for Identity sensors and detections
MDO and MDCA policies and detections
Work with Cyclotron architects to turn high-level designs into working deployments:
Follow design docs and runbooks
Provide feedback and suggest improvements from the field
Assist With Investigations And Operations
Use Defender and Sentinel to triage alerts
Run KQL queries, build saved queries and simple workbooks
Help improve internal tools and standards for Defender XDR and Sentinel deployments (scripts, templates, checklists).
Skills: microsoft,sc,sentinel,security
