Job Title: Security Operations Developer

Location: Remote

Salary: £35,000 – £50,000

The Company

An exciting opportunity has arisen at an award-winning Microsoft Partner for a Security Operations Developer. The business is a fast-growing, industry-leading managed service and security provider, delivering services to mid-sized and large enterprise clients.

This is a fantastic opportunity for a Security Operations Developer to continue their professional development with an established Microsoft Partner. The company has a strong focus on staff development, providing support for training and certifications. You will gain exposure to cutting-edge technologies, working across security operations and cyber defence.

This is a predominantly remote role; however, you must be based in the UK to be considered. The role will also require eligibility to gain SC Clearance due to government-based clients.

Key Responsibilities

• Create, maintain, and optimise Logic Apps and Sentinel playbooks to automate incident detection and response workflows in Microsoft Sentinel.
• Develop and implement API integrations between Microsoft Sentinel and other systems to enhance data collection, cross-system communication, and automation.
• Leverage APIs to streamline security operations and increase the SOC’s efficiency.
• Design and deploy automated workflows to handle routine SOC tasks, including alert enrichment, notifications, and data gathering.
• Work closely with security analysts and engineers to design automation solutions to improve overall security posture.
• Monitor and maintain automation tools to ensure they function as expected, identifying opportunities for further improvements.

Essential Experience

• Hands-on experience with Microsoft Sentinel: Proven track record in developing playbooks, automation workflows, and incident response processes within Microsoft Sentinel.
• Experience in building and maintaining workflows with Azure Logic Apps to automate processes.
• Strong experience in API development and integration.
• Proficiency in KQL, JSON, and PowerShell.
• Good written and verbal communication skills.
• Technical understanding of IT infrastructure, including:
  • Microsoft 365 suite
  • Defender XDR
  • Entra ID (Azure Active Directory)
  • Azure portal