Job Description

🔹 About the Role:

Our client, a government agency , is seeking a talented Software Developer II to design, build, and optimize Microsoft Sentinel capabilities for cybersecurity operations. This role is ideal for someone passionate about security automation, threat detection, and analytics , with experience in SOAR, UEBA, and Azure cloud technologies .

You will work with limited supervision, taking ownership of automation playbooks, UEBA models, integrations, and SIEM content to strengthen the agency’s security posture.

🔹 What You’ll Do:

• Develop, test, and deploy Sentinel SOAR automation playbooks using Azure Logic Apps, Azure Functions, ARM templates, and REST APIs.
• Create automated workflows for alert triage, response actions, notifications, and case management.
• Design UEBA detection rules, anomaly models, and advanced hunting queries (KQL) .
• Build and maintain custom data connectors, dashboards, and analytics content aligned with MITRE ATT&CK and Zero Trust principles.
• Integrate Sentinel with EDR, IAM, ticketing systems, firewalls, and other third-party tools .
• Write supporting scripts, microservices, and APIs using Python, PowerShell, .NET, or similar languages .
• Collaborate with cross-functional teams and provide Tier III support for Sentinel issues.

🔹 Required Skills & Experience:

• Bachelor’s degree in Computer Science, Software Engineering, Cybersecurity, or related field .
• 2+ years of software development, cloud engineering, SIEM engineering, or cybersecurity experience .
• Experience with Azure cloud services, Logic Apps, Azure Functions, Event Hubs, Key Vault, Azure AD .
• Strong skills in KQL, Python, PowerShell, .NET, or C# .
• Knowledge of security operations, incident response, and threat detection .
• Ability to work independently and deliver high-quality solutions.

🔹 Preferred Qualifications:

• 3+ years of hands-on experience with Microsoft Sentinel .
• Experience developing UEBA models, anomaly detection rules, and SOAR automation playbooks .
• Microsoft Certifications: SC-200, AZ-900, AZ-104, SC-100, SC-300 .
• Experience with DevOps pipelines (GitHub, Azure DevOps) .
• Experience in government, healthcare, or regulatory environments .

Job Tags

Similar Jobs