SOC Engineer – Microsoft Sentinel

Job Description

Role Title : Engineer - SOC Specialist

Skills Required : SOC operations, Microsoft Sentinel administration, automation with Logic Apps / playbooks, cloud security (Azure / AWS), and KQL

Location : Calgary, Alberta

Work Style : 100% Onsite

Experience Required : 6-8 Years

Must Have Skills :

(Ideally should not be more than 3-5) Microsoft Sentinel, Microsoft Defender (for Endpoint / Cloud / Identity), Azure Security Center, Office 365 Security & Compliance, and Power Automate / Logic Apps for automation

Nice to Have Skills :

PowerShell scripting

Role Description :

1 Administer and maintain Microsoft Sentinel workspaces across multi‑cloud environments.

2 Configure and manage Sentinel data connectors.

3 Automate incident response workflows using Logic Apps and Sentinel playbooks.

4 Develop and optimize KQL queries for log analytics and threat hunting.

5 Implement custom rules, alerts, and analytics for proactive detection.

6 Ensure seamless ingestion of telemetry from diverse cloud services.

7 Automate repetitive SOC tasks to enhance operational efficiency.

8 Manage Sentinel dashboards and reporting for SOC visibility.

9 Troubleshoot connector issues and optimize ingestion pipelines.

10 Collaborate with cloud teams to secure Azure and hybrid workloads.

11 Document automation processes, playbooks, and connector configurations.

12 Provide guidance on Sentinel best practices and cloud security posture.

13 Proficient in Microsoft 365 administration and security configurations.

14 Strong communication and collaboration skills

15 Provide technical guidance for clients, team members and stakeholders on Microsoft Purview capabilities and best practices

16 Contribute to continuous improvement of SOC automation and administration processes.

17 Resolves customer issues through problem solving, collaboration, and research. May take escalated issues as needed. Documents technical work and research.

18 Performs in-depth product troubleshooting and remediation when needed.

19 Collaborates on cross-team and cross-product technical issues by working with resources from other groups as needed to resolve moderately complex customer issues

Requirements

Experience (Years) : 4-6 Essential Skills :

• Work with project teams throughout the organization to design, implement, and manage CDN infrastructure using Akamai, to ensure high availability, performance, and scalability for customer facing applications and business processes.
• Handle multiple priorities and assignments with excellence and precision.
• Be a part of a 24 / 7 / 365 organization (some after hours support is expected as part of normal on-call rotation).
• Directly support line of business development teams, provide guidance to them on implementation and changes for customer facing applications
• Develop and maintain security protocols and measures to protect CDN infrastructure from cyber threats.
• Monitor and analyze network performance, identifying and resolving issues to optimize content delivery of critical applications.
• Collaborate with cross-functional teams to integrate Akamai CDN solutions with existing systems and applications.
• Collaborate with information security teams to implement DDoS protection strategies and other security measures in the CDN.
• Provide technical support and guidance to clients and internal teams regarding CDN and security best practices.
• Work closely with vendor and professional service teams on delivery related activities and strategy. Qualifications :
• Bachelor’s degree in Computer Science, Information Technology, or a related field. OR similar work experience.
• Strong understanding of network protocols (HTTP / HTTPS, DNS, TCP / IP).
• Proven experience as a CDN Engineer or similar role, with a strong focus on cybersecurity.
• In-depth knowledge of Content Delivery Network technologies, including caching, load balancing, and content optimization.
• Excellent problem-solving skills and attention to detail.
• Strong communication and teamwork abilities.
• Experience supporting 24 / 7 / 365 customer facing applications at enterprise scale.
• Awareness and experience with cybersecurity tools and practices, such as firewalls, intrusion detection / prevention systems, and encryption.
• Proficiency in scripting and automation (e.g., Python, Bash) a plus.
• Relevant certifications (e.g., CISSP, CEH) are a plus but not required.