This website uses cookies to ensure you get the best experience.

CROWDCONSULTANTS and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor
Skip to main content
CROWDCONSULTANTS career site
IT & Tech · Sofia · Hybrid

Security Detection Architect (Microsoft Sentinel & Defender XDR)

Design and scale enterprise SIEM, EDR, and XDR architectures using Microsoft Sentinel and Defender. Build high-fidelity detections, automate response, and bridge security engineering with SOC operatio

YOUR MISSION

  • Design and own enterprise-grade SIEM / EDR / XDR architectures centered on Microsoft Sentinel and the Microsoft Defender security stack

  • Define detection strategy by translating security objectives into actionable use cases, telemetry requirements, and architectural designs

  • Engineer advanced detections using KQL, building reusable analytics, baselines, and threat-aligned correlations mapped to MITRE ATT&CK

  • Integrate and normalize telemetry across cloud, hybrid, and on-prem sources including endpoints, identities, networks, workloads, and custom logs

  • Automate investigation and response through Sentinel playbooks, analytics rules, and workflows using PowerShell and/or Python

  • Partner with SOC and IR teams to drive continuous improvement across detection lifecycle, tuning, validation, and KPI-driven effectiveness reviews


YOUR EXPERIENCE & TALENTS

  • Proven expertise designing and operating Microsoft Sentinel in large-scale enterprise or MSSP/MDR environments

  • Hands-on experience with EDR/XDR platforms, preferably Microsoft Defender XDR

  • Strong background in detection engineering, log pipelines, data schemas, parsing, enrichment, and entity correlation

  • Experience optimizing SIEM architectures for cost, performance, retention, compliance, and auditability

  • Ability to lead and advise senior stakeholders across Security Architecture, SOC, Cloud, Identity, and Platform teams

  • Microsoft security certifications strongly preferred, including SC-200, SC-100, or Azure Architect (AZ-305); GIAC / CISSP beneficial

 

BENEFITS OFFERED BY OUR CLIENT

  • Work with top-tier talent in a collaborativehigh-performing team

  • Grow through cutting-edge technologiescontinuous learning, and certification opportunities

  • Thrive in a globaldiverse culture while contributing to exciting, cross-industry projects

  • Enjoy 50+ tailored benefits and a flexible hybrid working model

  • Balance work and life in a culture that supports your personal and professional development

 

PERFECT MATCH? We look forward to receiving your application!
QUESTIONS? Please contact Tanya at: +49 30 233 291 755
RECOMMENDATIONS? We’ll reward the successful placement of your recommendation with EUR 1000

Awards_Footer_1.png

Department
IT & Tech
Locations
Sofia
Remote status
Hybrid
Employment type
Permanent Full-time
Employment level
Experienced
Position at
Client
Picture of Tanya Todorova
Contact Tanya Todorova Partner Recruitment

Colleagues

Picture of Simon Schultz
Simon Schultz
Senior Partner Recruitment

OPEN POSITIONS

More jobs
IT & Tech · Sofia · Hybrid

Security Detection Architect (Microsoft Sentinel & Defender XDR)

Design and scale enterprise SIEM, EDR, and XDR architectures using Microsoft Sentinel and Defender. Build high-fidelity detections, automate response, and bridge security engineering with SOC operatio

Loading application form

Applicant tracking system by Teamtailor