Seeking SIEM Implementation Engineers with strong hands-on experience in Microsoft Sentinel, SIEM platforms, and Microsoft Defender. The role involves end-to-end SIEM deployment, integration, tuning, and automation while supporting global security operations.
Implement, configure, and optimize Microsoft Sentinel and SIEM platforms.
Integrate various log sources and security data feeds into SIEM.
Develop and enhance use cases, detection rules, alerts, and playbooks.
Create automation workflows and SOAR integrations to streamline response.
Troubleshoot data ingestion, correlation, and SIEM performance issues.
Produce documentation for architecture, configurations, and processes.
Work collaboratively with cybersecurity and engineering teams.
Support incident analysis during tuning and implementation phases.
4–6 years of strong hands-on experience in SIEM engineering or implementation.
Prior experience deploying and tuning Microsoft Sentinel.
Ability to work US EST rotational shifts.
Excellent communication skills in Portuguese and English.
Strong analytical and troubleshooting abilities.
Experience working in global/remote distributed environments is preferred.
Microsoft Sentinel, SIEM Implementation, Microsoft Defender, Log Source Onboarding, KQL (Kusto Query Language), Use Case Development, Alert Tuning, SOAR Automation, Playbook Development, Incident Response Support, Threat Detection Engineering, Log Analytics Workspace, Azure Security Tools, Security Monitoring, Correlation Rules, Cloud Security