SYF774 - IT SECURITY ENGINEER
SYF774 - IT SECURITY ENGINEER
IT
Middle/Senior
Ho Chi Minh City
Full-time
Responsibilities
Design, deploy, and configure Microsoft Sentinel to monitor, detect, and respond to security threats within clients' Microsoft cloud environments.
Collaborate with cross-functional teams to integrate Microsoft Sentinel with other security tools and technologies, ensuring seamless data flow and effective threat detection capabilities.
Conduct proactive threat-hunting activities to identify and mitigate potential security risks before they escalate.
Support internal staff, ensuring prompt and effective resolution of security-related issues.
Develop and maintain playbooks, alerts, and automated response mechanisms within Microsoft Sentinel to enhance efficiency and reduce manual intervention.
Provide technical expertise and guidance on best practices for configuring and optimizing Microsoft cloud security features.
Stay abreast of cybersecurity threats, trends, and technologies, incorporating new findings into the security operations workflow.
Actively participate in security incident response exercises and contribute to refining incident response procedures.
Collaborate with vendors and third-party partners to evaluate and implement additional security solutions that complement Microsoft Sentinel and enhance overall security posture.
Train other members of the team to deploy and manage Microsoft Sentinel.
Develop and maintain documentation, including standard operating procedures and knowledge base articles.
Requirements
At least 2 years of experience as a security engineer/analyst focused on supporting Microsoft Sentinel as the primary SIEM.
Strong proficiency in configuring and managing Microsoft Sentinel, including creating custom queries, dashboards, and playbooks.
Experience with other Microsoft cloud technologies such as Entra ID, Conditional Access Policies, Azure Security Centre, Defender for Office 365, Microsoft Defender for Endpoint, etc.
Proficiency in scripting and automation using languages like PowerShell, Power Automate, Logic Apps, or similar.
Solid understanding of cybersecurity principles, threat intelligence, and attack methodologies.
Excellent analytical and problem-solving skills with a keen attention to detail.
Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams.
Solid understanding of Active Directory, Group Policy, and Windows desktop operating systems.
Familiarity with network protocols, TCP/IP, DNS, DHCP, and VPN technologies.
Excellent written and verbal communication skills to effectively interact with clients and team members.
Proven ability to prioritize tasks and work efficiently in a fast-paced environment.
Microsoft certifications such as the following are a plus:
o AZ-500: Microsoft Azure Security Technologies
o SC-100: Microsoft Cybersecurity Architect
o SC-200: Microsoft Security Operations Analyst
o SC-300: Microsoft Identity and Access Administrator
o SC-400: Administering Information Protection and Compliance in Microsoft 365
Benefits
Working location: District 4, HCM
Salary range: USD 1,200 – 2,500 Gross
Infomation
Offered Salary
1,200 $ - 2,500 $
Skills