SIEM Platform Administrator

We at Coforge are hiring MS Sentinel Administrator with the following skillset:

Please find below JD:

• Administer, configure, and maintain Microsoft Sentinel SIEM platform.
• Onboard and manage data connectors (Azure services, M365, security tools, firewalls, endpoints, etc.).
• Develop and optimize KQL queries, analytics rules, workbooks, and dashboards.
• Configure and maintain playbooks (Logic Apps) for automation and incident response workflows.
• Monitor security alerts, correlate events, and support SOC teams in triaging incidents.
• Manage Sentinel content management, including watchlists, threat indicators, and rule tuning.
• Integrate Sentinel with other Microsoft security tools (Defender suite, Purview, Entra ID logs).
• Ensure data governance, retention policies, and compliance requirements.
• Conduct continuous Sentinel health checks, performance optimization, and log ingestion tuni...