M
New

Microsoft Security Automation & Incident Response Engineer - Contract Position

United StatesUnited StatesRemoteContractmid
OtherIncident Response Engineer
0 views0 saves0 applied

Quick Summary

Overview

Who We Are; What We Do; Where We’re Going Magnet Forensics is a global leader in the development of digital investigative software that acquires, analyzes, and shares evidence from computers,

Technical Tools
OtherIncident Response Engineer
Who We Are; What We Do; Where We’re Going
 
Magnet Forensics is a global leader in the development of digital investigative software that acquires, analyzes, and shares evidence from computers, smartphones, tablets, and IoT-related devices. We are continually innovating so our customers can deploy advanced and effective tools to protect their companies, communities, and countries.
 
Serving thousands of customers globally, our solutions are playing a crucial role in modernizing digital investigations, helping investigators fight crime, protect assets, and guard national security.
 
With employees based around the world, Magnet Forensics has been expanding our global presence. As a part of Magnet Forensics, you can expect to make a difference in the world, no matter what role you play. You’ll be supported through learning and development, not to mention an incredible team with unbelievable talent and integrity.
 
If you think you would be the right person to join our team working towards this goal, we would love to hear from you! 

Role Summary
 

Magnet Forensics is seeking a highly skilled Microsoft Security Automation & Incident Response Engineer to accelerate the maturity and efficiency of our security operations program.

This resource will be responsible for optimizing and integrating Microsoft's security platform, reducing manual analyst workload, automating repetitive tasks, improving detection coverage, and enhancing incident response capabilities.

The ideal candidate is a hands-on engineer with deep experience in Microsoft Sentinel, Defender XDR, automation, and modern security operations.

  • Analyze existing alert triage and incident response processes
  • Identify operational bottlenecks and manual activities
  • Implement improvements that reduce analyst effort and response times
  • Improve overall SOC efficiency and effectiveness
  • Tune Microsoft Sentinel analytics rules
  • Reduce false positives and alert fatigue
  • Create advanced correlation rules and hunting content
  • Improve quality and fidelity of security detections

Design and implement automation for:

  • Alert enrichment
  • Incident routing
  • Ticket creation
  • Escalation workflows
  • Investigation support
  • Standard response actions

Optimize and integrate:

  • Microsoft Sentinel
  • Microsoft Defender XDR
  • Microsoft Defender for Endpoint
  • Microsoft Defender for Identity
  • Microsoft Defender for Cloud Apps
  • Entra ID
  • Zscaler telemetry
  • Existing ITSM and ticketing platforms
  • Improve incident response processes
  • Enhance investigation playbooks
  • Develop response automation
  • Create operational runbooks and documentation

Requirements

~3 min read
  • 5+ years in Security Operations, Detection Engineering, or Incident Response
  • Strong Microsoft Sentinel experience
  • Strong Microsoft Defender suite experience
  • Advanced KQL skills
  • Logic Apps experience
  • SOAR automation experience
  • SIEM engineering experience
  • Security operations workflow optimization experience
    • Microsoft Security certifications
    • Threat hunting experience
    • Detection engineering background
    • Experience integrating third-party security telemetry
    • Exposure to Purview and DLP technologies
Indicators of Success
 
We’re looking for someone who checks off most, but not all, of the boxes listed in “skills and experiences”.  It’s more important to us to find candidates who can display indicators of success through skills they have developed and experiences they have been a part of, than to find folks who have “been there, done that”.  We want to be part of your development journey, and we’ll learn as much from you as you learn from us. 
 
How We Work
 
At Magnet Forensics, we take a hybrid-flexible approach to support your productivity and work-life balance. If you’re within a comfortable travel distance to one of our offices, you’ll occasionally join us in person. How often you’ll come in depends on your department and team needs, typically ranging from weekly to monthly. These in-person moments help us build stronger connections, spark new ideas, and celebrate our successes together. Most days, you can choose what works best for you, while staying in tune with your team’s goals.
 
We’re excited to welcome you to our team and look forward to achieving great things together - both in the office and wherever you work best!
 
The Most Important Thing
 
We’re looking for candidates that can provide examples of how they have demonstrated Magnet CODE in their previous experiences:
 
CARE – We care about each other and our mission to make a difference in the world.
OWN – We are accountable for our results – while never forgetting to act with integrity, empathy, and respect.
DEDICATE – We put our heart and soul into meeting the needs of our customers and helping them serve the people they protect.
EVOLVE – We are constantly innovating and exploring new ways to work together to make an impact with our work.
 
Here at Magnet Forensics, we are committed to continuous learning and are focused on building a diverse and inclusive workforce. This commitment will be reflected in our hiring processes and embedded in our values and how we treat one another. If you’re interested in this role, but do not meet all of the qualifications listed above, we encourage you to apply anyways.
 
Magnet Forensics is an Equal Opportunity Employer and considers applicants for employment without regard to race, colour, religion, sex, orientation, national origin, age, disability, genetics or any other basis forbidden under federal, provincial, or local law. We are committed to providing an inclusive, accessible recruitment process and work environment. Accommodation is available to all applicants upon request throughout the hiring process. Please contact aoda@magnetforensics.com should you require any accommodations.
 
All offers of employment at Magnet are contingent upon satisfactory completion of a background check. All background checks will be conducted in accordance with all applicable laws. Magnet will consider each position’s job duties, among other factors, in determining what constitutes satisfactory completion of the background check. Refusal to consent to a background check may be grounds for revoking an offer of employment.
 
US Applicants: Magnet Forensics participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.
 
Magnet Forensics handles and uses personal data of job applicants in line with its Recruitment Privacy Policy found here

Location & Eligibility

Where is the job
United States
Remote within one country
Who can apply
US

Listing Details

Posted
July 13, 2026
First seen
July 13, 2026
Last seen
July 14, 2026

Posting Health

Days active
0
Repost count
0
Trust Level
68%
Scored at
July 13, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust
Newsletter

Stay ahead of the market

Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.

A
B
C
D
Join 12,000+ marketers

No spam. Unsubscribe at any time.

M
Microsoft Security Automation & Incident Response Engineer - Contract Position