🛠 Tech Stack

💼 About This Role

You'll support a federal-facing program by strengthening security monitoring, detection, and incident response across complex environments. You'll focus on managing and optimizing Microsoft Sentinel SIEM operations and enhancing threat visibility in a compliance-driven setting.

🎯 What You'll Do

• Manage and optimize Microsoft Sentinel SIEM operations, including log ingestion and normalization.
• Develop detection rules, correlation logic, dashboards, and analytics for threat detection.
• Support incident response, threat hunting, and forensic investigations.
• Coordinate onboarding of new log sources from AWS, Azure, and other systems.

📋 Requirements

• 6+ years of experience in security engineering or SOC/SIEM roles.
• Hands-on experience with Microsoft Sentinel and other SIEM platforms.
• Proficiency in KQL for building queries and analytics.
• Experience with cloud security logs and environments such as AWS and Azure.

✨ Nice to Have

• Relevant certifications such as CISSP, GCIH, GCIA, or Microsoft Security certifications.
• Familiarity with NIST frameworks (800-53, 800-92, 800-61) and federal compliance standards.

🎁 Benefits & Perks

• 🏖️ Fully remote work arrangement within Canada.
• 📈 Professional development opportunities including certifications.
• 🔒 High-impact federal security program support.

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 45 min