An opportunity to join a highly technical and specialised team to help continuously improve upon a world-beating MXDR offering, and design and architect both our solution and provision clients consumption of our services. The role will be to ensure that onboarded client environments not only align to reference architecture, but also integrate into the existing customer environment, as well offer expertise and support throughout the life of the client engagement.
Key responsibilities
Design and Delivery of the solution into client environments, alongside continuous design improvement of in-house solution for delivery of Managed Extended Detection and Response (MXDR_services. Being able to architect, articulate, and drive the adoption of our MXDR cybersecurity solutions and ensuring alignment with client needs This includes:
Assist with the onboarding of new customers, building an understanding of customers business risks.
Integration of any updates/improvements released by Microsoft to the underlying technologies (Azure Monitor, Logic Apps, Functions, Sentinel) into the MXDR platform.
Engage with customers to gather onboarding requirements, and adapt reference architectures to align with their environment(s).
Provide solutions to enable log collection from 3rd party sources into the MXDR platform.
Understanding the customer requirements and scoping and defining an appropriate solution using our portfolio of technology and services.
Supporting our Sales team in positioning Managed Services and MXDR within customers including articulation of the business value for the customer.
Leading client engagement to understand the appropriate solution and scope.
Act as the SME to customers to improve the quality of service they are receiving and maintain a roadmap for those customers
Identify and implement, with the assistance of engineers and architects, technical enhancements to the services that drive value for our customers
Requirements
Skills
Essential
Solution architecture, design, and implementation for Azure Cloud.
Advanced capability with Azure Functions/Azure Logic Apps/ Serverless technologies.
Advanced capability with security architecture best practices in Azure.
Capable of designing and deploying advanced Azure AD features - Conditional Access, Privileged Identity Management, Azure Lighthouse.
Capable of discussing M365 products with clients, and integrating them into Log Analytics/Serverless- Defender for Identity, Defender for Endpoint. Defender for Office.
Experiencing with working in/around Security Operation Centres
Experience of using and/or managing SIEM/EDR/SOAR platforms
Proven success in supporting the sale of Managed Services.
Experienced in Solutions Architecture or Solution Creation role(s).
Beneficial
Experience with MS Sentinel very desirable, but not essential for the right person.
Extensive knowledge of XDR technology, cybersecurity principles, and threat detection and response methodologies
Understanding and application of MITRE ATT&CK and/or Lockheed Martin Cyber Kill Chain.
Managed Security Services competitive landscape and marketplace.
Behaviours
Self-starter and ability to operate within a fast-paced and deeply technical team.
Keenness to take ownership of problems and see through to conclusion.
Creative flair and a penchant for problem solving.
A real love of tech, data and doing cool things.
Client-focus and ability to have discussions at all levels.
Knowledge
Expert level knowledge of MS Azure
Expert level experience with Azure Monitor/Log Analytics
MS certifications highly desirable, ideally full Architect Track, such as the below:
AZ-900 Microsoft Azure Fundamentals
SC-200 Microsoft Azure Architect Technologies
AZ-500 Microsoft Azure Security Technologies
MS-500 Microsoft 365 Security Administration
AZ-305 Designing Microsoft Azure Infrastructure Solutions
MS-100 Microsoft 365 Identity and Services
MS-101 Microsoft 365 Mobility and Security