Position Description
This crucial role is at the heart of their security operations, requiring a skilled professional who is adept at managing complex security systems and responding to incidents using advanced technologies.
Key Technologies And Skills
- Microsoft Azure and Microsoft Sentinel: Deep knowledge and hands-on experience with Azure services (IaaS, PaaS, SaaS) and Microsoft Sentinel for SIEM operations. Expertise in using Microsoft Sentinel to manage, investigate, and respond to security incidents.
- KQL (Kusto Query Language): Proficient in writing and optimizing KQL queries for data analysis and automation within Azure Sentinel.
- Networking and Security Protocols: Strong understanding of TCP/IP, LAN/WAN configurations, DHCP, DNS, and routing protocols. Familiarity with network security and infrastructure.
- Encryption and Cybersecurity Frameworks: Solid grasp of encryption techniques and familiarity with cybersecurity frameworks like NIST, CIS, ISO 27001, COBIT, and PCI DSS.
- Incident Response and Threat Analysis: Extensive experience in incident response management, including threat identification, analysis, response, and mitigation within a large IT organization.
- Security Systems Expertise: In-depth knowledge of security systems including Intrusion Prevention Systems (IPS), Firewalls (Palo Alto, Zscaler), and Endpoint Protection Tools (Trellix/McAfee, Cisco Endpoint Security).
- Vulnerability Management and Risk Assessment: Proven ability to conduct security risk assessments, manage vulnerabilities, and apply industry-standard security frameworks and controls.
Experience Requirements
- 3+ years in Incident Response: Direct experience in managing incident response for multiple platforms and operating systems, including real-time security monitoring and incident handling.
- Risk Management and Compliance: Experience with security operations, control assessments, risk management, and compliance with security and privacy legal and regulatory requirements.
- Systems and Software Security: Familiarity with managing the security of various operating systems (Windows, Unix, Mac) and databases (SQL, Azure, Oracle).
- 2 years of experience with Microsoft Azure (IaaS, PaaS, IaaS), Microsoft Sentinel Endpoint Protection Tools (Trellix/McAfee, Cisco Endpoint Security), Palo Alto Firewall Zscaler KQL.
3+ years of experience within each of the following: Incident response, managing the security of multiple platforms, operating system, software and network protocols for a large IT organization, risk management, auditing, assessment, industry security framework, and/or internal controls, security, operations, control assessment, risk management, auditing, and/or internal controls with security and privacy legal and regulatory requirements performing information security risk assessments and risk analysis.
Desirable Qualifications
- Professional Certifications: Certifications such as CISSP, CISM, or equivalent are highly desirable to demonstrate professional commitment and knowledge.
- Educational Background: A Bachelor’s degree in Computer Science, Information Security, or a related field, with a preference for additional security-specific qualifications.
Trinus Corporation, a leading provider of technology solutions and services with over 25 years of experience, is a certified WBE/MBE/SBE/SDB firm accredited by WBENC, NMSDC, and SBA.
Our mission is to shape the future of work by aligning the right mix of people, process, technology, and innovation to efficiently meet our clients' business objectives.
At Trinus, we understand that finding the right opportunity is pivotal in your career journey. Our staffing services go beyond mere placements; they are about matching your skills and aspirations with the perfect fit.
To learn more about us, please visit our website www.trinus.com