MXDR Technical Consultant

An opportunity to join a highly technical and specialised team to help continuously improve upon a world-beating MXDR offering, and design and architect both our solution and provision clients consumption of our services. The role will be to ensure that onboarded client environments not only align to reference architecture, but also integrate into the existing customer environment, as well offer expertise and support throughout the life of the client engagement. 

Key responsibilities 

Design and Delivery of the solution into client environments, alongside continuous design improvement of in-house solution for delivery of Managed Extended Detection and Response (MXDR_services. Being able to architect, articulate, and drive the adoption of our MXDR cybersecurity solutions and ensuring alignment with client needs This includes: 

• Assist with the onboarding of new customers, building an understanding of customers business risks. 

• Integration of any updates/improvements released by Microsoft to the underlying technologies (Azure Monitor, Logic Apps, Functions, Sentinel) into the MXDR platform. 

• Engage with customers to gather onboarding requirements, and adapt reference architectures to align with their environment(s). 

• Provide solutions to enable log collection from 3rd party sources into the MXDR platform. 

• Understanding the customer requirements and scoping and defining an appropriate solution using our portfolio of technology and services. 

• Supporting our Sales team in positioning Managed Services and MXDR within customers including articulation of the business value for the customer. 

• Leading client engagement to understand the appropriate solution and scope. 

• Act as the SME to customers to improve the quality of service they are receiving and maintain a roadmap for those customers  

• Identify and implement, with the assistance of engineers and architects, technical enhancements to the services that drive value for our customers 

Requirements 

Skills 

Essential 

• Solution architecture, design, and implementation for Azure Cloud. 

• Advanced capability with Azure Functions/Azure Logic Apps/ Serverless technologies. 

• Advanced capability with security architecture best practices in Azure. 

• Capable of designing and deploying advanced Azure AD features – Conditional Access, Privileged Identity Management, Azure Lighthouse. 

• Capable of discussing M365 products with clients, and integrating them into Log Analytics/Serverless– Defender for Identity, Defender for Endpoint. Defender for Office. 

• Experiencing with working in/around Security Operation Centres  

• Experience of using and/or managing SIEM/EDR/SOAR platforms  

• Proven success in supporting the sale of Managed Services. 

• Experienced in Solutions Architecture or Solution Creation role(s). 

Beneficial 

• Experience with MS Sentinel very desirable, but not essential for the right person. 

• Extensive knowledge of XDR technology, cybersecurity principles, and threat detection and response methodologies  

• Understanding and application of MITRE ATT&CK™ and/or Lockheed Martin Cyber Kill Chain™. 

• Managed Security Services competitive landscape and marketplace. 

Behaviours 

• Self-starter and ability to operate within a fast-paced and deeply technical team. 

• Keenness to take ownership of problems and see through to conclusion. 

• Creative flair and a penchant for problem solving. 

• A real love of tech, data and doing cool things. 

• Client-focus and ability to have discussions at all levels. 

Knowledge 

• Expert level knowledge of MS Azure 

• Expert level experience with Azure Monitor/Log Analytics 

• MS certifications highly desirable, ideally full Architect Track, such as the below: 

• AZ-900 Microsoft Azure Fundamentals 

• SC-200 Microsoft Azure Architect Technologies 

• AZ-500 Microsoft Azure Security Technologies 

• MS-500 Microsoft 365 Security Administration 

• AZ-305 Designing Microsoft Azure Infrastructure Solutions 

• MS-100 Microsoft 365 Identity and Services 

• MS-101 Microsoft 365 Mobility and Security