Looking for candidate with the following mid to expert level preferred skills, experience, and capabilities:
- Recent experience with the administration and management of Microsoft Sentinel.
- Experience developing, compiling, and executing KQL queries.
- Strong aptitude to learn platforms, to work with stakeholders, to understand and provide thoughts on how to customize and maintain platforms to meet organizational business needs.
- Experience generating playbooks and using Azure logic apps for security orchestration, automation and response.
- Experience in querying, reviewing and providing contextual information from log data.
- Proficient in the use of M365 Office suite of tool.
- Ability to establish and maintain effective working relationships with peers, end users and vendor development staff, as well as all levels of management and judicial personnel as necessary.
- Ability to communicate clearly and lead technical discussions related to log data management and knowledge sharing.