Software People Inc.
Work Model: Onsite or Hybrid
Resume Requirement: 3-page resume with current LinkedIn profile
Compliance: RTR must be physically signed and documentation completed fully
About the Cloud Security Engineer Role
We are seeking an experienced Cloud Security Engineer with Microsoft Sentinel expertise to support advanced SIEM SOAR and UEBA engineering initiatives. This role focuses on designing and building automation workflows analytics rules and behavioral models that strengthen enterprise security operations.
As a Software Developer II level professional you will work with limited supervision while owning complex development tasks across Microsoft Sentinel Azure and integrated security platforms. This position is ideal for candidates who enjoy deep technical work while collaborating closely with cybersecurity operations and engineering teams.
Key Responsibilities for the Cloud Security Engineer with Microsoft Sentinel
Microsoft Sentinel SOAR Development
You will design develop test and deploy Microsoft Sentinel automation playbooks using Azure Logic Apps Azure Functions ARM templates and REST APIs. The role includes building automated workflows for alert enrichment incident triage response execution notifications and case management.
You will integrate Microsoft Sentinel with third party security tools including EDR IAM ticketing platforms email gateways and network security systems to automate security operations at scale.
UEBA and Analytics Engineering
This role requires hands-on development of custom UEBA detection rules anomaly models and ML-driven behavior patterns. You will write advanced KQL queries for analytics and threat hunting while building and maintaining entity behavior profiles and normalization rules.
You will work closely with cybersecurity teams to evaluate behavioral anomalies tune detection logic and reduce false positives while improving detection accuracy.
SIEM Content Development and Platform Engineering
You will design and implement custom data connectors ingestion pipelines and transformation logic within Microsoft Sentinel. Responsibilities include creating dashboards workbooks hunting queries and detection-as-code assets aligned with MITRE ATT&CK and Zero Trust principles.
You will also tune platform performance to reduce noise improve efficiency and support scalable security monitoring.
Application Development and Integration
You will develop supporting scripts microservices and helper APIs using Python PowerShell .NET or similar languages. The role includes working with CI CD pipelines Git-based version control and infrastructure-as-code practices to support secure development workflows.
Documentation Collaboration and Support
You will produce technical documentation including architecture diagrams SOPs automation runbooks and design documents. You will collaborate with cross-functional teams during requirements gathering testing and deployment and provide Tier III support for Sentinel engineering issues when required.
Required Knowledge Skills and Abilities for Cloud Security Engineer
Knowledge Of
-
Microsoft Sentinel architecture SOAR and UEBA capabilities
-
Azure services including Logic Apps Azure Functions Event Hubs Key Vault and Azure AD
-
Security operations including triage threat detection and incident response
-
MITRE ATT&CK NIST CSF and Zero Trust architecture
-
Programming and scripting languages such as Python PowerShell KQL C# or JavaScript
-
CI CD pipelines DevOps practices and Git-based version control
-
API integrations and JSON and YAML structures
Skills In
-
Building Logic App workflows and Sentinel automation playbooks
-
Writing complex KQL queries for analytics and threat hunting
-
Developing custom connectors data maps and parsers
-
Designing and optimizing UEBA detection models
-
Debugging SOAR workflows and resolving integrations
-
Communicating technical concepts clearly to diverse audiences
Ability To
-
Work independently and take ownership of complex tasks
-
Translate security requirements into scalable solutions
-
Analyze threat behavior and build meaningful detections
-
Collaborate across security infrastructure and application teams
-
Manage multiple priorities while meeting deadlines
Ready to Apply?
If you are a Cloud Security Engineer with deep Microsoft Sentinel experience and enjoy building advanced security automation this role offers the opportunity to make a measurable impact in a high-visibility environment.
👉 Check out other positions:
https://rishiwrites.com/jobs
👉 Let’s discuss your next career move:
https://www.linkedin.com/in/rishi-balgotra-career-expert/
Cloud Security Engineer Frequently Asked Questions
1. Is this a contract or full-time role?
This is a 6+ month contract position.
2. Is onsite work required?
Yes. The role is onsite or hybrid in Austin Texas.
3. What level of experience is expected?
Senior-level hands-on experience with Microsoft Sentinel and Azure security is required.
4. Is Microsoft Sentinel experience mandatory?
Yes. Direct Sentinel SOAR and UEBA development experience is essential.
5. What programming languages are used most?
KQL Python PowerShell and .NET are commonly used.
6. Will I work on SOAR playbooks daily?
Yes. Automation development is a major part of the role.
7. Is UEBA experience required?
Yes. You will design and tune behavioral detection models.
8. Are CI CD and DevOps skills needed?
Yes. Familiarity with Git and CI CD pipelines is expected.
9. What resume format is required?
A detailed 3-page resume is required.
10. Is LinkedIn profile mandatory?
Yes. A current LinkedIn profile is required.
11. What compliance documentation is needed?
RTR must be physically signed and all documentation completed fully.
12. Will I interact with SOC teams?
Yes. Collaboration with cybersecurity operations teams is part of the role.
13. Does the role include after-hours support?
Occasional Tier III support and post-incident reviews may be required.
14. Is this role suitable for remote candidates?
No. Candidates must be able to work onsite or hybrid in Austin.
15. Who should apply for this role?
Experienced Cloud Security Engineers specializing in Microsoft Sentinel SIEM and SOAR.
