Senior Security Engineer

Senior Security Engineer - Microsoft Sentinel & Threat Detection What will you do? Lead the architecture, deployment, and continuous improvement of Microsoft Sentinel across Flybuys environments. Engineer scalable log ingestion pipelines and integrations to maximise visibility and threat detection coverage. Design and optimise KQL-based analytics rules, workbooks, playbooks, and automation workflows. Collaborate with engineering and platform teams to ensure telemetry is captured, enriched, and actionable. Provide strategic guidance on data normalisation, enrichment, and threat modelling within Sentinel. In an agile delivery context, you will: Work closely with security architects, product owners, delivery leads, and engineering teams to define and deliver sustainable, effective security outcomes. Identify risks and vulnerabilities in technical solutions and recommend appropriate controls or mitigations. Explain the purpose and operation of security controls to technical and non-technical stakeholders. Contribute to solution architecture and high-level design documentation with a security lens. Support the development and maintenance of security standards, patterns, and operational artefacts. Enhance cloud security posture across Azure and AWS through Sentinel-driven insights. Drive remediation of security gaps identified via Sentinel analytics and threat hunting. Ensure cloud infrastructure is securely configured and monitored using Sentinel and integrated tools. Champion modern detection engineering practices and continuous improvement. You will also: Evaluate emerging detection technologies and assess their applicability to Flybuys' security strategy. Make informed design decisions balancing detection fidelity, performance, and operational efficiency. Act as the technical lead for Microsoft Sentinel and related detection platforms. Support incident response activities with Sentinel-driven investigation and automation. What are we looking for? Essential: Proven experience in security engineering with a strong focus on Microsoft Sentinel, including: Log ingestion, parsing, and enrichment KQL-based rule development and alerting (development of analytics rules and alerting mechanisms) Integration with Microsoft Defender and other security platforms Automation using Logic Apps and Sentinel playbooks Deep understanding of cloud security principles in Azure and AWS. Hands‑on experience with SIEM, EDR, and threat detection tooling. Strong analytical skills in interpreting telemetry and identifying threats. Experience designing and implementing detection controls across infrastructure and applications. Familiarity with agile delivery methodologies. Desirable: Bachelor's degree in Cybersecurity, Information Technology, or related field. Relevant industry certifications (e.g., SC-200, AZ-500, CISSP). Experience in threat detection and threat hunting. Position Complexity Technical SME for Microsoft Sentinel and threat detection engineering. Difficulty of Communication Able to communicate effectively with technical teams. Able to clearly articulate detection strategies and technical issues to non-technical stakeholders. Join the awesome team and enjoy these benefits & perks: Hybrid Medical, Dental Coverage and Life insurance from day 1 of employment with 2 HMO dependents Paid Vacation and Sick Leave (with Quarterly Sick Leave Conversion) Competitive salary package and annual appraisal Financial Assistance Program Mandatory Government Benefits and 13th Month Pay Complimentary Sleeping Quarters, Coffee at no cost Complimentary Office Fitness and Wellness Facilities at no cost Regular Company Events, Work Life Balance, and Career growth opportunities Accessible location at the heart of Metro Manila --- the Mega Tower, EDSA Equal Employment StatementEmployment decisions at ConnectOS will be conducted without consideration of factors such as age, race, color, religion, gender, disability status, sexual orientation, gender identity or expression, genetic information, and marital status. ConnectOS ensures the full confidentiality of the data it processes #J-18808-Ljbffr