Systems Engineer III
Odenton, MD · On-site
... KQL) queries, and YARA detection rules. • Provide advanced technical support and forensic expertise during high-priority cybersecurity incidents. • Serve as the primary technical advisor to ...
New
Odenton, MD · On-site
... KQL) queries, and YARA detection rules. • Provide advanced technical support and forensic expertise during high-priority cybersecurity incidents. • Serve as the primary technical advisor to ...
New
Odenton, MD · On-site
... KQL) queries, and YARA detection rules. • Provide advanced technical support and forensic expertise during high-priority cybersecurity incidents. • Serve as the primary technical advisor to ...
New
Arlington, VA · On-site
... KQL queries for Sentinel to improve detection fidelity and reduce false positives. • Tune detection sets to raise security-relevant events for triage and response teams. • Maintain version ...
Arlington, VA · On-site
... KQL queries for Sentinel to improve detection fidelity and reduce false positives. • Tune detection sets to raise security-relevant events for triage and response teams. • Maintain version ...
Arlington, VA · On-site
... KQL queries for Sentinel to improve detection fidelity and reduce false positives. • Tune detection sets to raise security-relevant events for triage and response teams. • Maintain version ...
Arlington, VA · On-site
... KQL queries for Sentinel to improve detection fidelity and reduce false positives. • Tune detection sets to raise security-relevant events for triage and response teams. • Maintain version ...
Mclean, VA · On-site
Utilize aggregations, date histograms, and filters (KQL) to analyze large datasets and ensure fast dashboard response times. * Alerting & Monitoring: Set up threshold-based alerts (Watcher) and ...
Quick apply
Mclean, VA · On-site
Utilize aggregations, date histograms, and filters (KQL) to analyze large datasets and ensure fast dashboard response times. * Alerting & Monitoring: Set up threshold-based alerts (Watcher) and ...
Redmond, WA · Remote
$45 - $60/hr
While tools like KQL are important, the role increasingly emphasizes understanding the data and systems, rather than just generating queries, especially as AI augments query development. Two analysts ...
New
Redmond, WA · Remote
$45 - $60/hr
While tools like KQL are important, the role increasingly emphasizes understanding the data and systems, rather than just generating queries, especially as AI augments query development. Two analysts ...
New
... KQL) and YARA rules * Act as a primary technical advisor to Government stakeholders on system risks and engineering considerations * Provide advanced forensic support to the SOC during critical high ...
... KQL) and YARA rules * Act as a primary technical advisor to Government stakeholders on system risks and engineering considerations * Provide advanced forensic support to the SOC during critical high ...
$108K - $147K/yr
Senior Bi/Data Engineer PowerBI, KQL, Azure App Insights, Strong SQL (queries/tuning/performance improvement). Working with real-time high frequency data up to the second, and is refreshing in App ...
$108K - $147K/yr
Senior Bi/Data Engineer PowerBI, KQL, Azure App Insights, Strong SQL (queries/tuning/performance improvement). Working with real-time high frequency data up to the second, and is refreshing in App ...
Build monitoring, logging, and auditing solutions using Azure Monitor, Log Analytics, and KQL * Support code reviews, branching strategies, release management, and engineering standards across ...
Build monitoring, logging, and auditing solutions using Azure Monitor, Log Analytics, and KQL * Support code reviews, branching strategies, release management, and engineering standards across ...
Quantico, VA · On-site
$123K - $169K/yr
Build and maintain detections-as-code: author and version KQL/SPL analytics, watchlists, and entity behavior rules with MITRE ATT&CK coverage. * Administer a proactive threat-hunting program using ...
Quantico, VA · On-site
$123K - $169K/yr
Build and maintain detections-as-code: author and version KQL/SPL analytics, watchlists, and entity behavior rules with MITRE ATT&CK coverage. * Administer a proactive threat-hunting program using ...
... KQL queries for Sentinel to improve detection fidelity and reduce false positives. • Tune detection sets to raise security-relevant events for triage and response teams. • Maintain version ...
... KQL queries for Sentinel to improve detection fidelity and reduce false positives. • Tune detection sets to raise security-relevant events for triage and response teams. • Maintain version ...
Annapolis, MD · On-site
$54.50 - $67.50/hr
Demonstrated background developing of analytics rules, incidents, playbooks, notebooks, workbooks, threat hunting and KQL queries for data normalization and parsing capabilities within Log Analytics ...
Annapolis, MD · On-site
$54.50 - $67.50/hr
Demonstrated background developing of analytics rules, incidents, playbooks, notebooks, workbooks, threat hunting and KQL queries for data normalization and parsing capabilities within Log Analytics ...
Annapolis, MD · On-site
$54.50 - $67.50/hr
Demonstrated background developing of analytics rules, incidents, playbooks, notebooks, workbooks, threat hunting and KQL queries for data normalization and parsing capabilities within Log Analytics ...
Annapolis, MD · On-site
$54.50 - $67.50/hr
Demonstrated background developing of analytics rules, incidents, playbooks, notebooks, workbooks, threat hunting and KQL queries for data normalization and parsing capabilities within Log Analytics ...
Proficiency in query languages such as SQL and KQL for data manipulation and analysis. Demonstrated experience in using popular log analytics tools such as Azure Log Analytics, Elasticsearch, Splunk ...
Proficiency in query languages such as SQL and KQL for data manipulation and analysis. Demonstrated experience in using popular log analytics tools such as Azure Log Analytics, Elasticsearch, Splunk ...
$106K - $146K/yr
Engineer, tune, and operate detections and response workflows across Microsoft Defender XDR and Microsoft Sentinel, including authoring and optimizing KQL queries, analytics rules, workbooks, and ...
$106K - $146K/yr
Engineer, tune, and operate detections and response workflows across Microsoft Defender XDR and Microsoft Sentinel, including authoring and optimizing KQL queries, analytics rules, workbooks, and ...
Nashville, TN · On-site
Strong troubleshooting skills to identify problems on Azure deployed environment by writing queries in Kusto Query Language (KQL) logs and analyzing logs from azure portal in application insights
Nashville, TN · On-site
Strong troubleshooting skills to identify problems on Azure deployed environment by writing queries in Kusto Query Language (KQL) logs and analyzing logs from azure portal in application insights
Tampa, FL · On-site
$52 - $66.25/hr
Strong troubleshooting skills to identify problems on Azure deployed environment by writing queries in Kusto Query Language (KQL) logs and analyzing logs from azure portal in application insights
Tampa, FL · On-site
$52 - $66.25/hr
Strong troubleshooting skills to identify problems on Azure deployed environment by writing queries in Kusto Query Language (KQL) logs and analyzing logs from azure portal in application insights
... KQL, Grafana, and Dynatrace. - Hands-on cloud and DevOps experience expected across Azure, OpenShift, AKS, GitHub, GitHub Actions, Artifactory, Docker, and PostgreSQL. - Agile/Scrum experience ...
... KQL, Grafana, and Dynatrace. - Hands-on cloud and DevOps experience expected across Azure, OpenShift, AKS, GitHub, GitHub Actions, Artifactory, Docker, and PostgreSQL. - Agile/Scrum experience ...
Raleigh, NC · On-site
Collect and analyse logs using Kusto KQL Splunk or equivalent tools for troubleshooting and data analytics * Collaborate with Cross functional teams to ensure lab readiness for validation and ...
Quick apply
Raleigh, NC · On-site
Collect and analyse logs using Kusto KQL Splunk or equivalent tools for troubleshooting and data analytics * Collaborate with Cross functional teams to ensure lab readiness for validation and ...
Redmond, WA · On-site
$59 - $81/hr
Experience in Live Site Monitoring Logic Apps KQL Scoping services Event Hub and YAML pipelines * Good to have experience on Kubernetes
Quick apply
Redmond, WA · On-site
$59 - $81/hr
Experience in Live Site Monitoring Logic Apps KQL Scoping services Event Hub and YAML pipelines * Good to have experience on Kubernetes
Minneapolis, MN · On-site
$54.75 - $70.75/hr
Troubleshooting and monitoring using Splunk queries, Azure KQL, Grafana, and Dynatrace. * Hands-on cloud and DevOps experience expected across Azure, OpenShift, AKS, GitHub, GitHub Actions ...
Minneapolis, MN · On-site
$54.75 - $70.75/hr
Troubleshooting and monitoring using Splunk queries, Azure KQL, Grafana, and Dynatrace. * Hands-on cloud and DevOps experience expected across Azure, OpenShift, AKS, GitHub, GitHub Actions ...
$11.30 - $21.85
12% of jobs
$21.85 - $32.41
3% of jobs
$42.70 is the 25th percentile. Wages below this are outliers.
$32.41 - $42.96
11% of jobs
$42.96 - $53.52
11% of jobs
The median wage is $61.43 / hr.
$53.52 - $64.07
19% of jobs
$64.07 - $74.63
18% of jobs
$78.59 is the 75th percentile. Wages above this are outliers.
$74.63 - $85.18
6% of jobs
$85.18 - $95.74
2% of jobs
$95.74 - $106.29
3% of jobs
$106.29 - $116.85
0% of jobs
$116.85 - $127.40
16% of jobs
$11
$68
$127
A KQL job typically involves working with Kusto Query Language (KQL), which is used to query and analyze large datasets in Microsoft Azure services like Azure Monitor, Log Analytics, and Application Insights. Professionals in this role often write and optimize KQL queries to extract insights from logs and telemetry data. They may work as data analysts, security analysts, or cloud engineers, using KQL to troubleshoot issues, monitor system performance, and create reports. Strong analytical skills and experience with Azure environments are usually required for this job.
| Aspect | Kql | Log Analyst |
|---|---|---|
| Required Credentials | Knowledge of Kusto Query Language, certifications in data analysis or cloud platforms | Experience with log analysis, certifications in cybersecurity or IT support |
| Work Environment | Primarily cloud-based, data analytics platforms, security monitoring | IT departments, cybersecurity teams, network operations centers |
| Employer & Industry Usage | Tech companies, cloud service providers, security firms | IT firms, cybersecurity agencies, enterprise IT departments |
| Search & Comparison Intent | Understanding Kql for data querying and analysis | Comparing roles in log analysis and security monitoring |
While both Kql and Log Analyst roles involve working with data and logs, Kql focuses on writing queries using the Kusto Query Language for data analysis in cloud environments. Log Analysts interpret and manage log data for security and troubleshooting. The roles often overlap but differ mainly in technical focus and tools used.

Sourced by ZipRecruiter
It services
11 - 50 Employees
Halethorpe, MD, US
2013