Actively and consistently support all efforts to simplify and enhance the customer experience Primary responsibility will be monitoring and responding to alerts
Creates detailed incident investigation for customer delivery
Perform weekly proactive investigations for different customer environment
Utilize a variety of tools to investigate incidents and take immediate action or recommend a course of action
Monitors and communicates threat intelligence from various resources that is relevant to our clients networks and systems
Coordinates the implementation of security countermeasures
Performs vulnerability and configuration management scans and communicates results to system owners for remediation
Participates in the response to cyber incidents by gathering data and artifacts relevant to the event
Provides production support to security systems Ensures compliance with security standards, policies, and procedures
Adheres to industry specific local, state, and United States federal regulations, as applicable
Must hold at least one industry cybersecurity certification CompTIA Cybersecurity Analyst CySA+, Certified Ethical Hacker, CISSP, SC-500, MS-500, AZ-500 certifications preferred
Experience with security monitoring EDR/XDR toolsets such as , Carbon Black, Microsoft Defender for Endpoint, Azure Identity ATP, Office 365 ATP, MCAS, SecureWorks Taegis XDR
Experience with security incident and event monitoring solutions such as Splunk and Microsoft Sentinel
Candidate must have ability to effectively communicate in English (written and verbal)