Senior Security Engineer; Microsoft XDR and Sentinel

Blue Voyant is seeking an experienced Senior Security Engineer to join our Deployment Engineering team. In this pivotal role, you will apply deep expertise in Microsoft Cloud security technologies and SIEM platforms to enable our MDR solutions within customer environments. You will serve as a lead engineer on large and enterprise‑scale SIEM and XDR deployments, working hands‑on across the Microsoft Security and Azure ecosystem.

Position: Senior Security Engineer (Microsoft XDR & Sentinel)
Team: Deployment Engineering – Microsoft Practice
Location: Remote, UK

• Lead complex Microsoft Sentinel SIEM and/or Defender XDR implementation projects (remotely) — from design and architecture through deployment and use‑case tuning.
• Engineer and optimize SIEM/XDR integrations across Microsoft Security and Azure product stacks.
• Assess and report on the maturity of client SIEM and XDR deployments.
• Develop new detection logic, automation workflows, and reporting use cases based on customer requirements.
• Define, build, and support operational and executive‑level security dashboards and reports.
• Act as a strategic technical lead for enterprise client‑facing projects.
• Mentor mid‑level and junior engineers within the Deployment Engineering team.
• Support ongoing maintenance and maturity activities within customer MDR environments.
• Identify and implement improvements to enhance delivery processes and technical enablement.
• Participate in R&D initiatives aimed at process improvement and new product/feature enhancements.
• Contribute to internal knowledge sharing through documentation, training sessions, and public‑facing content.

• Minimum 8 years of experience working with and enabling security technologies.
• Strong experience with Azure Cloud, Microsoft Sentinel, and Microsoft Defender solutions.
• Proficiency in query languages and scripting such as KQL, SPL, SQL, or Power Shell.
• Solid understanding of enterprise IT systems in the context of cybersecurity.
• Hands‑on engineering experience with SIEM and/or XDR technologies.
• Excellent communication skills and ability to work in a dynamic, fast‑paced team environment.

• Advanced engineering experience with Microsoft Sentinel and/or Defender XDR.
• Strong knowledge of Microsoft Defender security capabilities.
• Experience in customer‑facing consulting or engineering roles.
• Expertise in:
  • Kusto Query Language (advanced)
  • Azure Logic Apps, Function Apps, and related Azure automation services
  • Microsoft 365 platforms (Exchange Online, Teams, SharePoint)
  • Microsoft Intune
• Incident investigation and response experience.
• Proficiency in Python, Power Shell, or C#/.NET.
• Experience with Linux configuration and administration.

Blue Voyant is a cybersecurity firm that leverages proprietary data, analytics, and technology to provide advanced threat detection and response services. We focus on prevention, defense, and scalability across the entire ecosystem of our clients.

All employees must be authorized to work in the United Kingdom or the Republic of Ireland. Blue Voyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, Blue Voyant complies with applicable state and local laws governing non‑discrimination in employment in every location in which the company has facilities.