My client based in Dublin are seeking Senior Cloud & Security Operations Engineer. This is a daily rate contract for 6 months.
This role requires deep expertise in Microsoft Azure security, Microsoft Defender, SIEM/SOAR platforms, and incident response. The successful candidate will play a key role in detecting, investigating, and mitigating threats while driving proactive threat hunting and cloud security initiatives. In addition, you will provide leadership during critical security incidents, mentor junior analysts, and engage with stakeholders across both technical and business teams.
Key Responsibilities
Cloud & Infrastructure Security
* Configure and manage
Azure Security Center / Microsoft Defender for Cloud
, including alert triage and security posture management.
* Secure Azure workloads (IaaS, PaaS, SaaS) using
Zero Trust principles
and hybrid cloud security solutions (Azure Arc, on-prem AD integration).
* Implement and monitor
Azure AD security controls
: Conditional Access, Identity Protection, MFA, Privileged Identity Management (PIM).
* Configure and manage
Azure network security
(NSGs, ASGs, firewall rules, DDoS protection).
* Administer the
Microsoft Defender suite
: Defender for Endpoint, Defender for Identity, Defender for Office 365.
* Ensure data protection with
Key Vaults, encryption practices, and secure storage
.
Security Operations & Incident Response
* Lead
end-to-end incident handling
: triage, investigation, containment, eradication, recovery, and lessons learned.
* Perform forensic analysis including
log correlation
(Sentinel, Log Analytics), evidence collection, and timeline reconstruction.
* Conduct
threat hunting
across Azure and hybrid workloads using IoCs and advanced analytics.
* Investigate
malware and phishing campaigns
, applying reverse engineering basics and sandboxing techniques.
* Develop and maintain
automation playbooks
for SOAR platforms (Microsoft Sentinel, IBM QRadar).
* Write and optimize
Kusto Query Language (KQL)
queries and
PowerShell scripts
for investigations and automation.
* Integrate security telemetry via
APIs
from Azure and OT platforms.
Governance, Risk & Compliance
* Apply and track compliance using
Azure Policy
and regulatory frameworks (GDPR, EU NIS2.0).
* Align practices with
NIST CSF, ISO 27001, CIS Controls
, and OT standards (NIST 800-82, IEC
* Support IT/OT network segmentation and asset monitoring (experience with
Armis
highly beneficial).
Leadership & Collaboration
* Act as
incident commander
during major security events.
* Provide
threat intelligence reporting
to executives and external stakeholders.
* Mentor and guide junior analysts, fostering continuous learning and development.
* Communicate complex technical issues clearly to
non-technical stakeholders
.
Required Skills & Experience
* Proven hands-on experience with
Azure Security, Microsoft Defender suite, and SIEM/SOAR platforms
(Sentinel, QRadar, or equivalent).
* Strong knowledge of
cloud security, hybrid environments, and Zero Trust
.
* Practical experience in
incident response, digital forensics, and threat hunting
.
* Familiarity with
NIST, ISO 27001, CIS Controls
, and OT-specific standards.
* Excellent proficiency with
KQL, PowerShell
, and security API integrations.
* Strong communication, leadership, and mentoring skills.