An opportunity to join a highly technical and specialised team to help continuously improve upon a world-beating MXDR offering, and design and architect both our solution and provision clients' consumption of our services. The role will be to ensure that onboarded client environments not only align to reference architecture but also integrate into the existing customer environment, as well as offer expertise and support throughout the life of the client engagement.
Key Responsibilities
Design and delivery of the solution into client environments, alongside continuous design improvement of in-house solution for delivery of Managed Extended Detection and Response (MXDR) services.
Architect, articulate, and drive the adoption of our MXDR cybersecurity solutions, ensuring alignment with client needs. This includes:
Assist with the onboarding of new customers, building an understanding of customers' business risks.
Integration of any updates/improvements released by Microsoft to the underlying technologies (Azure Monitor, Logic Apps, Functions, Sentinel) into the MXDR platform.
Engage with customers to gather onboarding requirements and adapt reference architectures to align with their environment(s).
Provide solutions to enable log collection from third-party sources into the MXDR platform.
Understand customer requirements and scope and define an appropriate solution using our portfolio of technology and services.
Support our Sales team in positioning Managed Services and MXDR within customers, including articulation of the business value for the customer.
Lead client engagement to understand the appropriate solution and scope.
Act as the SME to customers to improve the quality of service they are receiving and maintain a roadmap for those customers.
Identify and implement, with the assistance of engineers and architects, technical enhancements to the services that drive value for our customers.
Requirements
Skills
Essential
Solution architecture, design, and implementation for Azure Cloud.
Advanced capability with Azure Functions/Azure Logic Apps/Serverless technologies.
Advanced capability with security architecture best practices in Azure.
Capable of designing and deploying advanced Azure AD features – Conditional Access, Privileged Identity Management, Azure Lighthouse.
Capable of discussing M365 products with clients and integrating them into Log Analytics/Serverless – Defender for Identity, Defender for Endpoint, Defender for Office.
Experience working in/around Security Operation Centres.
Experience using and/or managing SIEM/EDR/SOAR platforms.
Proven success in supporting the sale of Managed Services.
Experience in Solutions Architecture or Solution Creation roles.
Beneficial
Experience with MS Sentinel is very desirable but not essential for the right person.
Extensive knowledge of XDR technology, cybersecurity principles, and threat detection and response methodologies.
Understanding and application of MITRE ATT&CK and/or Lockheed Martin Cyber Kill Chain.
Managed Security Services competitive landscape and marketplace.
Behaviours
Self-starter and ability to operate within a fast-paced and deeply technical team.
Keenness to take ownership of problems and see through to conclusion.
Creative flair and a penchant for problem solving.
A real love of tech, data, and doing cool things.
Client-focused and ability to have discussions at all levels.
Knowledge
Expert-level knowledge of MS Azure.
Expert-level experience with Azure Monitor/Log Analytics.
MS certifications highly desirable, ideally full Architect Track, such as the below:
AZ-900 Microsoft Azure Fundamentals.
SC-200 Microsoft Azure Architect Technologies.
AZ-500 Microsoft Azure Security Technologies.
MS-500 Microsoft 365 Security Administration.
AZ-305 Designing Microsoft Azure Infrastructure Solutions.
MS-100 Microsoft 365 Identity and Services.
MS-101 Microsoft 365 Mobility and Security.
#J-18808-Ljbffr