Sentinel Security Engineer (sofia)

Sentinel Siem Security Engineer

This is a technical role with Integrity360 where you will be working within a team of security engineers managing and maintaining security solutions for Integrity360 customers. You would be responsible for monitoring, detecting, and responding to cybersecurity threats across client environments. Their primary role involves configuring and managing Microsoft Sentinel, including setting up analytics rules, automating incident response workflows, and integrating diverse data sources for comprehensive threat visibility. You would conduct threat hunting, investigate security incidents, and work closely with Security Operations Center (SOC) analysts to escalate and mitigate incidents efficiently. Additionally, they provide regular security insights, produce compliance reports, and ensure alignment with industry security frameworks, all while maintaining effective communication with clients and internal teams to strengthen overall cybersecurity posture. You would be expected to maintain your certification status for key vendors during your time with Integrity360.

Integrity360 Team Members drive excellence through all our behaviors and actions to deliver an enhanced experience for our internal and external customers.

As a Sentinel SIEM Security Engineer you will be able to demonstrate the following qualities:

• Experience supporting and configuring complex technical environments involving large network and security projects.
• Ability to work as part of a team and has the capacity of taking on escalated issues from other team members.
• A dynamic interest in solving technical issues as well as learning new skills.

Required Skills

• 3+Years' experience of managing and maintaining Microsoft Sentinel SIEM solution particularly focusing on Security Use Cases. MS Sentinel hands on experience is a must!
• Strong understanding of SIEM concepts, log management, and log source integration (e.g., syslog, Windows Event logs, custom applications) to ensure comprehensive visibility.
• Scripting and Automation: Proficiency in Kusto Query Language (KQL), and possibly Python to automate incident response actions and build custom Sentinel playbooks.
• Experience working within a SOC or MSS team environment, with an understanding of collaboration and escalation procedures.
• Knowledge of some of the following leading Security Products would be a plus:

• SIEM - Splunk, Rapid7 Insight IDR
• IDS/IPS – Checkpoint, FortiGate
• Endpoint Security Solutions – Cylance, Checkpoint, CrowdStrike, Forcepoint

Integrity360 Employee Benefits (Bulgaria)

At Integrity360 we aim to reflect what's important through the benefits we offer. We survey our people regularly and encourage discussions around these tops so we can understand what really makes a difference. Our benefits priorities are physical, mental, and financial wellbeing.

Mental & Physical Wellbeing Benefits

• Premium private healthcare by Uniqa with extended coverages
• Dental coverage, claim up to 400BGN/year
• Optical coverage, claim up to 100BGN/year
• Life insurance
• MultiSport card fully covered

Financial Wellbeing

We guarantee that every employee will have their pay reviewed at least once every year, if not more regularly. We aim to pay within the market range for all roles and keep pace with inflation on average.

What we offer:

• Twice yearly salary reviews
• Other benefits include: 4 days additional annual leave (24 in total). Option to carry over up to 12 days in the next year.

Our L&D program, we work with various platforms including Cybrary, Udemy, Preply, Pluralsight, Swift and HTB ensuring our people are up to date with their industry knowledge. Offering opportunities to further upskill and gain industry leading certifications.

Strictly no agencies.