Security Engineer (Sentinel) L2

Would you like to kick start your career in a supportive, collaborative and innovative company?

Do you enjoy working as part of an enthusiastic, passionate, and collaborative team?

Join our Cyber Operations team

The Softcat Cyber Operations teams provides our customers with cyber security monitoring, analysis, assessment and remediation.

Success. The Softcat Way.

Softcat is a £1billion+ technology solutions business and trusted partner to names like Apple, Microsoft, and Adobe. Offering a growing portfolio of services including software licensing, cyber security, and IT infrastructure, we give our technical teams the tools and support to make exciting things happen. This is where to achieve more for your career.

Do you want to make change happen by joining a team that never stands still?

Working as part of our Cyber Operations team, you'll be part of our Engineering function, responsible for designing, deploying, configuring, and maintaining the tools used by Cyber Services. In this Microsoft Sentinel-focused role, your responsibilities will include onboarding new customers into the platform.

As an Expert Security Engineer L2, you'll be responsible for:

• Onboarding customers into our Sentinel-based SIEM service, setting up Data Connectors, integrations with 3rd party apps & API's, writing KQL, automation, dashboards & service reporting
• Driving tuning & optimisation activities within Sentinel, and aligning with other SIEM tools in use by the service
• Developing, building and implementing use cases (Analytics & Hunting Rules) within Sentinel, based on industry best practice, active threats and customer requirements.
• Developing and delivering reports/visibility to customers in line with service definitions
• Interfacing with customers to resolve issues, provide additional information, and answer questions related to detection and monitoring
• Working alongside our in-house and vendor teams in deploying, troubleshooting and managing Sentinel for multiple customers

We'd love you to have:

• Strong experience working with KQL, ADX, data connectors, GitHub and other components of MS Sentinel
• Experience with other SIEM and related information security management platforms desirable, such as AlienVault, Elastic, EDR/MDR tools, vulnerability management platforms etc
• Organised, with strong communication skills both written and oral, and with the ability to translate and deliver technical information to a non-technical audience

• Customer focused and proactive in resolving technical issues and challenges

• Knowledge of project management or DevOps practices is beneficial

Work in a way that works for you

We recognise that everyone is different and that the way in which people want to work and deliver at their best is different for everyone too. In this role, we can offer the following flexible working patterns:

• Hybrid working – 2-3 days in the office and 2-3 days working from home
• Working flexible hours - flexing the times you start and finish during the day
• Flexibility around school pick up and drop offs

Working with us

Wherever you work, we want you to experience the freedom and autonomy to realise your potential. You will feel supported by a team that celebrates individuality, encourages different perspectives, and embraces every background.

Join us

To become part of the success story, please apply now

As part of our commitment to supporting, attracting and retaining the best diverse talent, Softcat is proud to partner with organisations like WORK180, My G Work and Black Young Professionals. Work 180 endorse employers that demonstrate on-going support for women at work, including offering benefits and policies that best support female employees. My G Work support us in our aim of attracting more LGBTQ+ talent. The BYP network support us in diversifying our talent pool by tapping into the black professional community.