Microsoft Security Consultant
Hamilton Barnes
Croydon, United Kingdom
6 days ago
Role details
Contract type
Temporary contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Compensation
£ 102KJob location
Remote
Croydon, United Kingdom
Tech stack
Azure
Cloud Computing
Intrusion Detection and Prevention
Information Systems Security Architecture Professional
Microsoft Security Essentials
Performance Tuning
Kusto Query Language
Zero Trust Network Access
Security Information and Event Management
Systems Integration
Data Ingestion
Microsoft Power Automate
Mitre Att&ck
Mttr
Microsoft Sentinel
Splunk
Job description
- Architect and deliver Microsoft Defender XDR solutions, running architecture and design workshops to define end-to-end security strategies aligned with Zero Trust and secure-by-design principles
- Lead Microsoft Sentinel implementations including data connector configuration, KQL analytics rule development, Logic Apps playbook automation, and SIEM tuning to reduce false positives and improve MTTR
- Assess and optimise client Defender XDR and Sentinel configurations, producing detailed remediation and maturity roadmaps aligned to Microsoft, CIS, NIST, and MITRE ATT&CK best practices
- Advise on Defender XDR, Sentinel, and Entra ID integration to enable holistic security visibility, supporting migrations from legacy SIEM platforms such as Splunk
- Collaborate with SOC and Incident Response teams during escalated incidents, rapidly onboarding critical assets and integrating key data sources for containment and investigation
Technologies:
- Architect
- Azure
- Support
- Security
- Splunk
- Cloud, We are offering an initial 6-month contract on an outside IR35 basis for a fully remote Microsoft Security Consultant role. We work with enterprise clients across EMEA and North America, combining hands-on technical delivery with trusted advisory support to design and implement modern security architectures. The role focuses on Microsoft Sentinel, Defender XDR, and Azure security, with an emphasis on Zero Trust, secure-by-design principles, and scalable solutions that improve detection, response, and overall security maturity.
Requirements
- Deep hands-on expertise across Microsoft Defender XDR and Microsoft Sentinel, including architecture, deployment, tuning, and optimisation in enterprise environments
- Strong KQL development skills for analytics rules, data parsers, and detection engineering, with experience implementing Logic Apps playbooks for automated response workflows
- Proven experience leading Splunk to Sentinel migrations, including data ingestion normalisation, ASIM alignment, and detection fidelity improvement
- Knowledge of Zero Trust architecture, CIS, NIST, and MITRE ATT&CK frameworks, with the ability to produce security maturity roadmaps and architectural guidance for enterprise clients
- Strong client-facing and advisory skills, with experience running workshops, mentoring engineers, and communicating complex security concepts to stakeholders across EMEA and North America