Cybersecurity Cloud Engineer
The Cyber Security Cloud Engineer will conduct comprehensive investigations and incident response activities across various cloud and on-premises security platforms.
This role emphasizes working with Microsoft 365, Palo Alto Networks, Zscaler, Active Directory, and Intune. The ideal candidate should possess a strong technical background and hands-on experience with these tools, demonstrating the ability to identify, analyze, and mitigate security threats.
The company is located in Philadelphia, PA and will remain 100% remote.
What You Will Be Doing :
- Investigate Security Incidents
- Conduct In-Depth Investigations : Investigate security incidents across Microsoft 365, Palo Alto Networks, Zscaler, Active Directory, and Intune.
- Analyze Logs and Alerts : Identify potential threats by analyzing logs and alerts from various security tools.
- Perform Root Cause Analysis : Determine the origin and scope of incidents through thorough root cause analysis.
- Incident Response
- Develop and Execute Plans : Create and implement incident response plans for cloud and on-premises environments.
- Coordinate Responses : Collaborate with internal teams and external partners to respond to and remediate security incidents.
- Document Activities : Document and report on incident response activities and outcomes.
- Monitoring and Analysis
- Monitor Dashboards and Alerts : Oversee security dashboards and alerts from M365 Security Center, Palo Alto Networks Panorama, Zscaler Central, and Intune.
- Utilize SIEM Tools : Aggregate and analyze security events and logs using SIEM tools.
- Conduct Regular Audits : Perform regular security compliance audits of Active Directory.
- Threat Hunting
- Search for Threats and Vulnerabilities : Proactively hunt for threats and vulnerabilities within cloud and on-premise environments.
- Evaluate Vulnerability Exposure : Work with threat hunters to assess the exposure of Core to reported vulnerabilities.
- Develop Threat Hunting Strategies : Implement threat hunting strategies using available tools and intelligence.
- Security Best Practices
- Adhere to Best Practices : Ensure cloud and on-premise security configurations follow best practices and organizational policies.
- Implement Recommendations : Work with company leadership on regular health checks and integrate recommendations into practice.
Required Skills & Experience :
The candidate needs to have extensive experience working with Azure, Palo Alto and Zscaler.
Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn’t provide sponsorship.