LAB3 is one of the largest Azure engineering practices in the Australasia region with a focus on Cloud & DevOps, Data, IoT & AI, Modern Workplace, Security, and Network services. The role: We have a great opportunity for a Senior Engineer with NV1 clearance (or the ability to obtain one) to join LAB3’s Security & SOC and take ownership of engineering, codifying, and operating modern security platforms across diverse client environments. You’ll work with cutting-edge Microsoft technologies including Microsoft Sentinel, Defender XDR, and the broader Microsoft security stack to deliver secure, scalable, and automated solutions that protect businesses from evolving threats. This is a hands-on technical role where you’ll design and maintain log ingestion pipelines, build high-fidelity detections, automate response workflows, and embed DevSecOps practices that improve SOC efficiency, resilience, and cost-effectiveness. What You’ll Do Security Engineering: Provide technical leadership across multiple enterprise clients, ensuring secure architecture and high standards of delivery. Own SIEM Platforms: Optimise Microsoft Sentinel performance, tune detections, troubleshoot issues, and manage cost strategies without compromising security. Build Detection Content: Develop analytics rules, hunting queries, and UEBA use cases mapped to MITRE ATT&CK; reduce false positives while maintaining accuracy. Drive DevSecOps: Codify security solutions using IaC (Terraform/Bicep), manage CI/CD pipelines, and enforce Git workflows for automation and version control. Automate Response: Engineer SOAR playbooks (Logic Apps), Azure Functions, and secure API integrations to streamline incident response. Ensure Resilience: Govern RBAC, Key Vault secrets, and service principals; apply zero trust principles and timely patching for connectors and agents. Collaborate & Mentor: Partner with SOC analysts, platform engineers, and client teams; mentor junior engineers and uplift documentation standards. Our ideal candidate: Experience: 5 years in SOC or security engineering roles with strong SIEM expertise (Microsoft Sentinel preferred). NV1 Clearance or ability to obtain NV1 Clearance Technical Skills: KQL mastery, detection engineering, and log ingestion (AMA DCRs). DevSecOps: Terraform/Bicep, Azure DevOps/GitHub, CI/CD pipelines. Automation: Logic Apps, Azure Functions, secure API integrations. Microsoft Security Stack: Defender XDR, Defender for Cloud, Entra ID, Key Vault. Scripting: PowerShell, Python, Regex. Mindset: Client-centric, collaborative, and passionate about secure automation and continuous improvement. What’s in it for you? Be part of a team that truly leverages modern technologies to solve real problems and enable efficient digital transformation for organisations across Australia, New Zealand, and the United States Work with a Microsoft Partner of the Year award winner with multiple specialisations, consistently punching above our weight on the global technology stage Be supported by experienced peers and leaders, with clear career pathways and ongoing learning, including Microsoft and Hashi Corpcertifications, all in a community that values technical expertise, and encourages innovation and practical experimentation with automation and AI Enjoy a supportive workplace that values inclusion, flexibility, diversity, and differences. We actively encourage and embrace all cultural backgrounds, genders, abilities, and circumstances Take advantage of largely working from home in our remote/hybrid workplace and enjoy the flexibility to balance your life Thrive in a community with strong values BeTrue TeamUp StandOut ThinkAhead FearLessAchieveMore Apply now, call or connect on LinkedIn for further information. LI-GS1
