- Email system audit and configuration
- Next-gen endpoint protection audit and configuration
- DLP audit and configuration
- Proxy audit and configuration
- Assist with Azure and O365 security
- Assist with Firewall rule and threat protection audits and configuration best practices including network access control
- Regularly write standard operating procedures for the department
- Identify threats and gaps in technical controls, monitoring, alerting, and operations
- Develop and report on performance and risk KPIs
- Work collaboratively with other teams and team members, including Infrastructure, Software Development, and Compliance
- Participate in the change management process
- Participate in incident response operations and other duties as required
Qualifications:
- 5+ years of IT experience
- 2+ years of dedicated information security experience
- Cybersecurity related certifications such as CEH, CySA+, CSA, CISSP, GPEN, OSCP, SSCP, Azure Security Engineer or similar
- Solid knowledge of networking fundamentals
- Knowledge of IAM services such as SSO and MFA
- Knowledge of the MITRE Attack Framework
- Knowledge of the OWASP Top 10
- Experience using security frameworks such as NIST CSF, ISO, HITECH
- Experience working in regulated environments such as HIPAA, PCI, SOX, etc. a plus
- Demonstrated ability to document standard operating procedures
- Excellent verbal and written communication skills, clear articulation of complex issues, and problem-resolution skills a must
- Ability to provide continual value to the team regardless of assignment and work with minimal supervision
Desirable Skills and Experience:
- Experience leading projects
- Experience with CASB
- Familiarity with vulnerability management platforms such as Rapid7, Qualys, Tenable, etc.
- Familiarity with benchmarking and hardening operating systems and appliances
- Basic scripting experience in Python, PowerShell
- Experience with offensive security tools such as Metasploit, ZAP, Burpsuite Pro, etc.