Senior Cyber Security MS Sentinel Engineer

Posted:
7/24/2024, 11:50:59 PM

Location(s):
Sofia, Sofia City Province, Bulgaria ⋅ Varna, Varna, Bulgaria ⋅ Sofia City Province, Bulgaria ⋅ Varna, Bulgaria

Experience Level(s):
Senior

Field(s):
IT & Security

Workplace Type:
Hybrid

Job Description:

About DXC Bulgaria  

We are DXC - a Fortune 500 global IT services leader. In Bulgaria, we are among the largest employers with over 4,000 employees working on the company's entire IT portfolio. We are flexible - we provide everything you need to comfortably work from home, but we also keep our offices open for collaboration, meetings, and building a strong team spirit. We tailor everyone’s development path to their individual interests through training and additional certifications.

Our experience and desire to grow, our mission, and our values ​​create an environment where ambitious people become successful at home. At home - in Bulgaria.

The Senior Cyber Security MS Sentinel Engineer is working on security projects at our Enterprise customers as part of our team. They will work with our customers to design and implement security solutions and services that enable the customers to utilize the full benefit of their security stack and effectively respond to the large amounts of alerts that come in daily. The Senior Cyber Security MS Sentinel Engineer will work within the client environment and preferred security platform and tools. The Senior Cyber Security MS Sentinel Engineer will be responsible for a nominated account and will be working in parallel with other team members for this customer. 

Daily challenges

  • Integrate technical knowledge and business understanding to create superior solutions for the company and for customers.

  • Develop SIEM and SOAR use cases and log data collection utilizing the SIEM (Sentinel) and automation and log analytics toolsets.

  • Develop analytics rules, incidents, playbooks, notebooks, workbooks, threat hunting and KQL queries for data normalization and parsing capabilities within Log Analytics' data ingestion pipeline.

  • Develop automated incident response capabilities utilizing the security platform capabilities.

  • Creating reports for supporting the customer, the majority of these will be customer facing. Awareness of projects and on-site consultancy.

  • Liaising with Project Managers and participating in project planning/reviews as appropriate in preparation for service introduction.

  • Reporting on Customer Satisfaction.

  • Responsibility for helping to drive service improvements by ensuring that any issues or concerns with the technologies supplied and services delivered are clearly understood by the business and appropriate actions identified and implemented. 

  • Proactively and reactively look for solutions to prevent complex problems from occurring across teams/technologies.

  • Mentor/consult with team members, other organizations, customers, and vendors on complex issues.

  • Build strong relationships with the customer, sales and support teams.

  • Customer Relationship Management: Influence with customers and/or internal businesses/end users on a broad range of technical and operational topics.

  • Support of Security Delivery Leads team in the larger accounts.

  • Maintain up to date knowledge of the technical capabilities of the client’s security platform by reading knowledge base articles, vendor announcement and attending vendor training courses and certifications.

  • Mentor/assist less-experienced team members on complex incidents. Provide feedback to create new the company solution sets.

Key deliverables/accountabilities:

  • Lead and execute implementation and technical activities on customer’s solution

  • Create design and technical documentation

  • Ensure customer raised queries/concerns are addressed with the highest quality and according to agreed timelines

  • Obtain and maintain security certifications in relevant technologies

  • Provide solution improvement recommendations based on business needs understanding and new vendors offerings/improvements

  • Strictly follow DXC ITSM/ITIL processes and procedures

  • Support of Security Delivery Leads

eXperience and skills required

  • Degree/Diploma in Computer Science, Computer Engineering, Management Information Systems or equivalent certifications.

  • Considerable experience working in the IT sector in a customer communications role.

  • Have knowledge and experience with SIEM/SOAR technologies such as: Azure Sentinel, Splunk, QRadar, ArcSight

  • Possession of one of the relevant (MS) certifications (e.g. SC-100; SC-200; CISSP; CCSP; CISA; CISM; ECSA; CRISC; OSCP; CSA; AZ-500; MS-500;)

  • Experience in the IT Outsourcing Services, IT Service Management, support industry and/or ITIL area

  • Fluent in English language

Personal skills and qualities:

  • Ability to manage complex situations which could potentially impact the customer business both operationally and financially.

  • Demonstrate ability to pay attention to detail and investigate in order to resolve operational and service issues whilst managing the customer’s expectations.

  • Ability to resolve customer issues with a virtual team who may work in different departments across the organization.

  • Ability to communicate with internal and external senior management confidently and demonstrate the professionalism of the job family.

  • Good communication skills and customer centric focus - ability to communicate clearly and in a timely manner with all customers, partners and users, internal and external

  • Good analytical and troubleshooting skills

  • Team player. Ability to collaborate and cooperate with members of team and members of other teams

  • Understanding of 24x7 mission critical enterprise computing environments and the impact of service disruption on a company’s bottom line

  • Ability to pro-actively learn new technology, processes and other skills

  • Able to pro-actively search for solutions from knowledge bases, support documentation and other information.

  • Keen interest in continual learning and professional development

Technical skills:

  • Excellent understanding of ITSM/ITIL framework and processes

  • Proficient knowledge of workflow tools

  • Excellent understanding of Security Frameworks such as (ATT & CK, NIST, Cyber Kill Chain)

Company benefits

  • Competitive remuneration package

  • Additional Medical & Life insurance

  • 4 days additional paid leave (total: 24 days)

  • The possibility to work entirely remotely

  • Food vouchers

  • Training, continuous learning and career development in the largest IT company on the market

  • Unlimited access courses from a bunch of external partners for the best learner's experience (e.g., LinkedIn Learning, Udemy)

  • Access to a foreign language learning platform

  • Stable employment in an international company

  • Advancement opportunities within the organization (a variety of interesting projects with the array of technologies and tools)

  • Flexibility in work arrangement (hybrid or fully remote work, the home office culture is in our DNA)

  • Workplace equipment to organize your home office (e.g., chair, desk, additional monitor, headset etc.)

  • DXC Partner courses and certifications (Microsoft, SAP, ServiceNow, AWS, Google, Dell Technologies, IBM, Micro Focus, Salesforce, Red Hat, VMware, Workday)

  • Employee Referral Program - a financial bonus for the referrer for successful candidate recommendation

  • Employee Recognition Program with points assigned by colleagues for the recognized employees (exchangeable for prizes)

  • Employee Assistance Program (providing 24/7 support for employees and their families in difficult life situations)

  • Opportunity to join our numerous charity and ecology-related events organized by our Employee Ambassadors team


We Deliver eXcellence for our Customers and colleagues every day. Our values form the foundation of everything we do and every decision we make.

If you feel comfortable with the above-mentioned requirements, please send us your CV in English. We continue with stay-at-home recruiting and video interviewing for the foreseeable future.

Please note only shortlisted candidates will be contacted.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.