You will manage and improve security posture through threat detection, incident response, and cloud security engineering.
Responsibilities
- Manage, create, and improve threat detection rules within Microsoft Sentinel, Rapid7 Insight IDR, or other SIEM platforms.
- Execute incident detection and response protocols including forensics, threat hunting, and threat intelligence.
- Implement CIS operating system hardening and vulnerability management using Tenable One or similar platforms.
- Secure cloud environments using Azure Well-Architected Framework principles and Palo Alto Networks Prisma.
- Monitor and manage identity exposure and endpoint security using CrowdStrike and BeyondTrust PAM.
Required Skills
- 6+ years of experience in Information or Cyber Security.
- Bachelor's degree and advanced certifications such as CISSP, CCSP, SANS GIAC, Offensive Security, AZ-500, or SC-100.
- Expertise with Azure Cloud Security and the Azure Well-Architected Framework.
- Hands-on experience with CrowdStrike EDR and identity exposure tools.
- Proficiency with BeyondTrust PAM or other Privileged Access Management solutions.
- Experience with Snyk or other application code scanning tools, including SAST/DAST.
- Knowledge of Fortinet Fortigate or other NGFW technologies.
- In-depth understanding of networking, network security, and enterprise communication technologies.
- Working knowledge of MITRE ATT&CK, CIS, and NIST CSF frameworks.