Azure Sentinel Principal Engineer
OverviewAceInfo, a Guidehouse Company is seeking Azure Sentinel Principal Enginee to hire to support our federal project in Bowie, MD. This position can be remote for the right candidate!!The Azure Sentinel Principal Engineer will provide support to the US Census Enterprise Operations and Security branches. The candidate will be responsible for managing the day-to-day operations of the Enterprise Azure Sentinel system.The Azure Sentinel Principal Engineer will provide guidance and direction into the functional design, configuration, data management, reporting, O&M support and best practices for leveraging and managing Azure Sentinel in a federal agency setting. The Principal Engineer will develop and execute application ingestion processes to include capacity planning, infrastructure, and functional impact analyses.Additionally, the Principal Engineer will provide Azure Sentinel operational troubleshooting support and assist with complex problems of diverse scope where analysis of situation or data requires an in-depth evaluation of various factors. Furthermore, the candidate will support customers with designing reports, dashboards, and query troubleshooting.Must work well with general guidance, generate competent technical input for operations documentation, be detailed and security oriented. Must have excellent oral and written communications skills, as well as excellent interpersonal skills to deal with multiple contrteams within a government organization. Must have worked in large enterprise class type environments, be in-line with industry best practices, think outside the box, and be able to make recommendations to improve overall governance and support continuous improvementDuties & ResponsibilitiesHigh proficiency with Azure Sentinel and Azure Log Analytics.Demonstrated background developing of analytics rules, incidents, playbooks, notebooks, workbooks, threat hunting and KQL Queries for Data Normalization and parsing capabilities within Log Analytics' data integration pipeline.Understanding of Security Operation Center tool applications Advanced event analysis leveraging Azure Sentinel SIEM.Solid knowledge of M365 security toolsets.Expertise in Azure Logic Apps, Microsoft Flow and Power BI.Advanced incident investigation and response skill set Advanced log parsing and analysis skill setFamiliarity and practical application of advanced principles of ITIL/ITSM.Ability to present to executive management incident debriefs and root cause analysis reports.Maintain related documents including policies, processes, guides and SOPs.Be a customer advocate by consistently meeting and/or exceeding expectations, and incorporating customer service into all aspects of work performed.RequirementsRequired qualifications: 10+ years of experience with a Bachelors in Computer Science or related field. In lieu of degree, a combination of education and 15+ years of demonstrated hands-on professional experience. Comfortable in a fast-paced work environment. Various Microsoft, Red Hat or Azure certifications are a plus. Comfortable in a fast-paced work environment. Prior experience with Splunk also helpful but not required. Demonstrated experience of Azure Sentinel design, implementation, and operations in large enterprises.Expert level using KQL query language.Demonstrated knowledge of Azure Cloud Services.Technical knowledge of the latest Microsoft and Red Hat operating systems.Knowledge of government security policies (FISMA, NIST 800-53, DHS4300, OMB EL-3, etc.).Multi-platform scripting abilities (eg, PowerShell, Bash, Python, etc.).Hands on experience with Ansible and other similar CM type tool is a plusSoft Skills And Abilities Organizational Skills: Can plan and prioritize work, both their own and that of project team. Follows tasks to their logical conclusion and makes sure that tasks are completed to the correct standard. High attention to detail. Team Work: Comfortable working both individually and as part of a team. Prepared to challenge ideas within a group in a constructive way. Ability to influence others and move a proposed effort toward a common vision or goal. Communications: Ability to communicate clearly and efficiently to team members and clients, verbally and in writing. Able to present ideas in a variety of ways depending upon audience and context. Excellent active listening skills. Strong interpersonal skills with the ability to interact effectively with all levels of personnel, elected officials, executive leadership, senior management, users, vendors and subcontractor personnel. Problem Solving: Natural inclination for planning strategy and tactics. Ability to analyze problems and determine root cause, generating alternatives, evaluating and selecting alternatives and implementing solutions. Results oriented : Able to drive tasks forward and toward completion. This position requires US Citizenship and the ability to obtain a public trust clearance.CompensationThis position is open to candidates virtually from Montana, New Mexico, Utah, Wyoming, Arizona or Eastern, Pacific, and Central time zonesCompany DescriptionDovel Technologies and its Family of Companies (Medical Science & Computing and Ace Info Solutions) was acquired in October 2021.Guidehouse is a leading global provider of consulting services to the public sector and commercial markets, with broad capabilities in management, technology, and risk consulting. By combining our public and private sector expertise, we help clients address their most complex challenges and navigate significant regulatory pressures focusing on transformational change, business resiliency, and technology-driven innovation. Across a range of advisory, consulting, outsourcing, and digital services, we create scalable, innovative solutions that help our clients outwit complexity and position them for future growth and success. The company has more than 12,000 professionals in over 50 locations globally. Guidehouse is a Veritas Capital portfolio company, led by seasoned professionals with proven and diverse expertise in traditional and emerging technologies, markets, and agenda-setting issues driving national and global economies.Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance, including the Fair Chance Ordinance of Los Angeles and San Francisco.If you have visited our website for information about employment opportunities or to apply for a position, and you require accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation. Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse, and Guidehouse will not be obligated to pay a placement fee.