Security Operations Engineer (Threat Hunting & EDR)

We are seeking a

Security Operations Engineer

to support

Threat Hunting, EDR, and SIEM operations

in a 24×7 SOC environment. This role focuses on

incident response, detection engineering, and proactive threat hunting

using Microsoft security platforms. Key Responsibilities

Lead SOC shifts, manage alert queues, and ensure SLA compliance. Investigate and respond to advanced threats using

Microsoft Defender for Endpoint

and

Microsoft Sentinel . Perform

hypothesis-driven threat hunts

aligned to

MITRE ATTCK . Develop, tune, and maintain detections using

KQL

and EDR policies. Build dashboards, correlation rules, and automation to reduce MTTD/MTTR. Document incidents, root cause analysis, and detection improvements. Report threat trends and hunting outcomes to stakeholders. Required Experience

5–8 years

in Security Operations / SOC / Threat Hunting. Hands-on experience with

Microsoft Sentinel

and

Defender for Endpoint . Experience in Tier-2/Tier-3 SOC investigations or shift leadership. Strong knowledge of

MITRE ATT&CK

and adversary TTPs. Nice to Have

SOAR automation (Sentinel), PowerShell or Python. Cloud security monitoring (Azure / M365). Certifications:

SC-200, SC-300, Security+, CySA+, GCIA/GCIH . Tools

Microsoft Sentinel | Microsoft Defender for Endpoint | MITRE ATT&CK Ideal for professionals passionate about

threat hunting, detection engineering, and improving SOC maturity .