SIEM & Security Automation (Microsoft Sentinel)

About the Role:We are looking for a highly skilled Senior Engineer to lead and elevate our SIEM & Security Automation capabilities across the Group. In this role, you will be the technical owner of our Microsoft Sentinel platform—designing, engineering, and optimizing advanced detection use cases and automated response workflows that strengthen our cyber defence posture. Requirements:As an SIEM & Security Automation (Microsoft Sentinel), you will be responsible for the following tasks:Lead the administration, configuration, and optimization of the Group’s SIEM/SOAR platforms, with a primary focus on Microsoft Sentinel.Design, build, and maintain advanced analytics rules, UEBA use cases, hunting queries (KQL), workbooks, playbooks, and automations within Sentinel.Develop, customize, and maintain Logic Apps, Azure Functions, and other automation workflows to enhance detection, response, and remediation capabilities.Drive the continuous improvement of detection engineering practices, ensuring high-fidelity alerts and reduced false positives.Oversee the end-to-end lifecycle of security incident response automation, including design, testing, deployment, and documentation.Collaborate closely with Security Operations, Cloud, Infrastructure, and Application teams to ensure seamless integration of data sources and automation workflows.Evaluate new Sentinel features, Azure security capabilities, and emerging SOAR technologies to recommend enhancements aligned with Group Information Security strategies.Lead or support SIEM/SOAR transformation initiatives across Business Units to ensure consistent deployment, standards, and operational excellence.Establish and maintain coding standards, reusable components, and development best practices for security automation.Provide guidance, mentorship, and technical oversight to junior engineers and project teams.