Must haves:
• Azure Sentinel
• Azure Security Centre / Defender for Cloud
• Defender for Endpoint
• SPLUNK Cloud
• Service NOW - Security Incident Response
Experience and Skill Set RequirementsExperience and Skill Set Requirements
Required Skills - 45%
Advanced knowledge and experience with Security Information & Event Management technology
• Azure Sentinel
• Azure Security Centre / Defender for Cloud
• Defender for Endpoint
• SPLUNK Cloud
• Service NOW - Security Incident Response
Cloud Infrastructure
• Infrastructure as a Service (IaaS)
• Platform as a Service (PaaS)
• Software as a Service (SaaS)
Agile Project Delivery - 15%
• Experience working on agile project delivery teams
• Working Experience with
○ Backlog
○ User Stories
○ Scrum
○ Sprints
Security Operations Experience - 35%
• SIEM use case development, rationalization and configuration
• SIEM dashboard creation
• Security Operational process development and documentation (Playbooks)
• MITRE Framework
Previous Public Sector Experience - 5%
• Previous Public Sector work experience is considered a positive
