Security DevOps engineer in Bucuresti

Hours p/w: full time, 36 - 40 hours.Role OverviewIn this role, your primary focus will be safeguarding our client's organization from cyber threats by crafting effective security detections within Microsoft Sentinel.Key Activities:Develop sophisticated and high-quality detections based on the MITRE ATT&CK framework.Investigate the use of AI, machine learning, and User Entity Behavior Analytics (UEBA).Prioritize automation for continuous integration (CI/CD), seamless production deployment, and auto-recertification of security detections.Deliver Real Time security data and insights, monitor coverage and identify potential risks.Participate in governance meetings and contribute to threat modelling with stakeholders.Core Responsibilities:Tailor Microsoft Sentinel setups to meet specific security needs and work closely with various teams to ensure effective configuration.Develop custom detection rules, alerts, and automation tools to address unique security challenges.Connect Azure Sentinel with other Microsoft tools, third-party software, and data sources to enhance security visibility and streamline incident response.Provide technical support for troubleshooting and fine-tuning Sentinel deployments, continuously improving the system's performance.Maintain thorough documentation of system designs, configurations, and best practices for deploying Azure Sentinel.Lead training sessions to upskill internal teams in using and managing Azure Sentinel.Assist in security audits and assessments to ensure Sentinel environments comply with regulatory and industry standards.Required Skills & Experience:In-depth knowledge of Azure, AWS, or Google Cloud services, along with experience in security investigations and cloud-based forensics.Proficient in using Microsoft Sentinel, Kusto Query Language (KQL), Log Analytics, and AWS CloudWatch.Strong experience with Endpoint Detection and Response tools commonly used in enterprise settings.Expertise in Microsoft Azure DevOps, including CI/CD pipelines, service connections, and software integration.Proficiency in Bash, Powershell, Azure CLI, YAML, Ansible, and JSON.Extensive experience in cybersecurity, threat intelligence, and forensic IT investigations.Familiarity with security frameworks like NIST, ISO , CIS, OWASP, and the Cloud Controls Matrix (CCM).Strong teamwork and relationship-building skills, with a proven ability to mentor and lead others.We are aware that we ask a lot. In case you feel like you're up for a challenge but don't meet all the requirements mentioned above, feel free to apply and we'll schedule a meeting promptly.Michael Bailey International is acting as an Employment Business in relation to this vacancy.