Cyber Security Engineer -Sentinel & XDR SME

ID: 1067 \| 2\-6 yrs \| India \| careers

• *Job Title:** Cyber Security Engineer (Microsoft Security Stack)

• *Experience:** 2–4 Years

• *Location:** Hinjewadi phase 1

• *Employment Type:** Full\-time

• *Role Overview**

We are looking for a skilled **Cyber Security Engineer** with hands\-on experience in Microsoft security technologies, including Microsoft Sentinel, Defender for XDR, and Cloud Security Posture Management (CSPM). The ideal candidate will be responsible for monitoring, detection, incident response, and improving the overall security posture of the organization.

• *Key Responsibilities**

• *A. Microsoft Sentinel (SIEM)**

Configure, manage, and maintain Microsoft Sentinel environments

Develop and fine\-tune analytics rules, alerts, and workbooks

Monitor security events and respond to incidents in real time

Integrate log sources via connectors (Azure, O365, AWS, etc.)

Perform threat hunting using KQL (Kusto Query Language)

• *B.** **Microsoft Defender for XDR**

Manage and configure Defender products (Defender for Endpoint, Office 365, Identity, Cloud Apps)

Analyze threats and respond to alerts using XDR portal

Implement automated response actions and playbooks

• *C. CSPM (Cloud Security Posture Management)**

Implement and manage CSPM tools (e.g., Microsoft Defender for Cloud)

Perform cloud security assessments and risk analysis

Ensure compliance with security frameworks and best practices

Identify misconfigurations and drive remediation efforts

• *D.** **Incident Response \& SOC Support**

Investigate and respond to security incidents

Conduct root cause analysis and provide mitigation recommendations

Prepare incident reports and documentation

Participate in SOC operations and escalation handling

• *Required Skills \& Qualifications**

2–4 years of experience in Cyber Security / SOC operations

Strong hands\-on experience with

Microsoft Sentinel (SIEM)

Microsoft Defender XDR suite

Microsoft Defender for Cloud (CSPM)

Good knowledge of

Azure security concepts and cloud environments

Threat detection and incident response

Networking fundamentals and security concepts

Experience in writing KQL queries

Understanding of MITRE ATT\&CK framework

Familiarity with security standards (ISO 27001, NIST, CIS benchmarks)

• *Preferred Skills (Good to Have)**

Experience with email security and phishing simulation tools

Knowledge of automation (Logic Apps / SOAR playbooks)

Exposure to vulnerability management tools

Certifications such as

Microsoft SC\-200 (Security Operations Analyst)

Microsoft AZ\-500 (Azure Security Engineer)

Any SOC / Cybersecurity certification

• *Soft Skills**

Strong analytical and problem\-solving skills

Good communication and reporting skills

Ability to work in a fast\-paced SOC environment

Proactive and detail\-oriented