Responsibilities :
- Will be a core player who participates in and leads multiple security efforts. You will work closely with development teams, product managers and enterprise teams to ensure that company's brands and products are secure.
- This position requires expertise in managing and securing our various environments and endpoints.
System Focus:
- Managed current antivirus on Microsoft Windows Server
- Migrate server environment from antivirus solution to Defender.
- Plan and deploy WAF technologies.
- Incident Response tickets and participate in on call rotation.
- Experience with Azure, containers, Kubernetes, pipelines.
- Strong experience with networking, firewalls, load-balancers for On-Premises and in Cloud environments
- Strong experience with networking, firewalls, load-balancers for On-Premises and in Cloud environments
- Good understanding of Virtualization technologies - VMs, Containers, VMware
- Experience in automation with cloud solutions and with Terraform. Microsoft Windows Server OS- 2008, 2012, 2016, 2019, 2022
Endpoint Focus:
- Configure and manage Microsoft Defender and Intune for endpoint protection and device management across the organization.
- Monitor threat intelligence feeds for the latest email-borne threats.
- Identify email-based threats and malicious emails and be able to respond to compromise.
- Support secure email protocols, routing and configuration (e.g. DMARC, DKIM, SPF, DLP, SPAM Filtering).
- Previous experience with managing and maintaining one or more key information security systems, including: Microsoft Defender EDR, Netskope, Proofpoint, Tenable, Trend Micro, Intune; in addition to other key security technologies.
- Strong understanding of endpoint security concepts, including malware prevention, detection, and response, endpoint detection and response (EDR), and endpoint management.
- Hands-on experience with security technologies such as antivirus, endpoint firewall, endpoint encryption, and endpoint detection and response (EDR) solutions.
- Endpoint Security Strategy: Develop and execute comprehensive endpoint security strategies tailored to meet the unique needs of users, leveraging Microsoft Defender, InTune, and other EDR/MDR solutions.
- Solution Implementation: Lead the implementation and configuration of endpoint security solutions, ensuring seamless integration with existing infrastructure and alignment with security best practices.
- Technical Expertise: Serve as a subject matter expert on endpoint security technologies, providing guidance on deployment, configuration, and optimization of Microsoft Defender, InTune, Netskope, DLP, and other relevant tools.
- Incident Response: Collaborate with incident response teams to investigate and mitigate endpoint security incidents, utilizing advanced forensic techniques and analysis of security logs and alerts.
- Threat Intelligence: Stay abreast of emerging threats and vulnerabilities affecting endpoint security, and incorporate threat intelligence into security strategies and operational procedures.
- Security Assessments: Conduct endpoint security assessments, identifying gaps and vulnerabilities in existing security measures, and recommending remediation actions to enhance overall security posture.
Infrastructure
- Expertise in Palo Alto NGFW, Meraki, and NSX DFW.
- Documenting and maintaining the documentation for the networking infrastructure, data flows, security compliance, and ports-and-protocols requirements.
- Firewall rule analysis, clean up, requests and troubleshooting.
- URL Requests using content filtering in Meraki.
- Applying hardening and best practices to firewalls
- Plan, design, and implement Micro-segmentation solutions.
- Conduct vulnerability assessments, penetration tests, and audits to identify and mitigate network security risks and gaps.
- IDS/IPS deployment, maintenance
Main Duties & Responsibilities:
- Collaborate with cross-functional teams to integrate security controls into overall security architecture and policies.
- Provide technical expertise and guidance to junior team members and other IT staff on security best practices and procedures.
- Stay current with emerging threats and security technologies and recommend enhancements to the security posture accordingly.
- Incident Response tickets and participate in on call rotation.
Requirements:
- Bachelor's degree in computer science, information security, or related field (or equivalent experience).
- Technical certification in security or vendor specific certifications
- 3+ years of cybersecurity work experience.
- Accustomed to working in a complex environment developing complex solutions in a cybersecurity context.
- Previous experience configuring vulnerability and system hardening scans.
- Must have very strong problem solving/troubleshooting skills.
- Must be able to pay strong attention to detail while multi-tasking and maintaining organizational skills.
- Time management and strong communication skills
- Ability to explain technical concepts to inexperienced users.
- Ability to communicate at a conceptual level to management and at a detailed level to engineers and administrators.
- Proven ability to work independently and collaboratively in a fast-paced environment, managing multiple priorities and delivering high-quality results on time.