Responsibilities
- Configure and troubleshoot security technology and systems including infrastructure related to the SIEM, endpoint protection, and data loss prevention.
- Design and implement security architecture and monitor the availability, serviceability, and recoverability of installed technology security systems.
- Manage the installation and integration of system patches, updates, and enhancements to existing security systems.
- Perform research and analysis on new and emerging technology to evaluate security detection, prevention, and response capabilities.
- Develop automation to expedite remediation and response activities to increase system efficiency and lower the human intervention time on tasks.
- Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement.
- Implement and manage security technology within Office 365 applications such as Exchange Online, SharePoint Online, and OneDrive for Business.
This includes configuring data loss prevention (DLP) policies, email encryption, and anti-phishing protections.
Qualifications
Education
Bachelor’s degree in related technical field
Experience
- At least 7 years’ experience in related technical discipline
- Understanding IT fundamentals, such as network protocols, traffic analysis, TCP / IP, firewall and endpoint logging, etc.
- Proven working experience in installing, configuring and troubleshooting UNIX / Linux based environments.
- Cloud experience, preferably Azure
- Administration of operating systems (Windows, *nix), their security mechanisms, and logging requirements
- Proficient in scripting languages (e.g., Powershell, shell scripts, Perl, Ruby, Python)
- Knowledge of database administration and support
- Experience with SIEMs, IDS / IPS, antivirus software, EDR platforms, etc.
- Knowledge in automation technologies and tools, such as SOAR platforms, Power Automate, etc.
- Capable of troubleshooting security issues, recommend solutions, and implement or foster implementation with necessary administrative groups.
- Strong verbal and written communication skills to articulate complex security issues to different stakeholders and provide updates to senior leadership.
- Ability to collaborate with cross-functional teams.
Preferred Qualifications
- Familiarity with cloud platforms (AWS, Azure, Google Cloud) and their security features
- Professional certifications in CISSP, GCIH, GCIA or relevant SANS GIAC certifications
30+ days ago