Strong knowledge of Information Security / Cybersecurity related technologies, processes, and tools.
Working knowledge of Office 365 security concepts, policies, settings, alerting, audit logging, security and compliance center, cloud app security is required.
Staying up to date on recent threats (e.g., OWASP Top 10), security tools and concepts is required.
Experience with network security concepts and products (e.g., Cisco/Barracuda firewalls and Intrusion Prevention Systems, email security, and Web Application Firewall (WAF), with working knowledge on Akamai/Cloudflare a plus.
Familiar with security monitoring (SIEM), analysis and resolution of security events/alarms (working knowledge with Google Chronicle a plus).
Familiar with identity and access management concepts (e.g., Azure Active Directory, OKTA MFA, SSO).
Familiar with SOC1/2, PCI, HIPAA, CCPA/GDPR or related security frameworks.
Familiar with application-level security framework and hands on experience mitigating application vulnerabilities and threats, such as SQL injection and cross-site scripting.
Strong analytical and problem-solving skills
Strong Windows Active Directory and Networking experience a plus
Security focused degree and/or certifications a plus (e.g., CISSP, CISM, CISA)