Job Description

Ensign is hiring !

Key Responsibilities:

• Monitor and manage security tools (e.g., SIEM, EDR, IDS/IPS, SOAR) and ensure optimal performance and availability.

• Assist in the deployment, configuration, and tuning of security systems to improve threat detection capabilities.

• Conduct log analysis and threat investigations to support incident response teams.

• Provide technical support and troubleshooting for SOC-related tools and platforms.

• Collaborate with threat hunters and analysts to refine use cases and detection rules.

• Maintain documentation related to configurations, processes, and technical procedures.

• Participate in security incident response and post-mortem analysis when required.

• Work closely with other IT and security teams to support operational security initiatives.

• Continuously assess and improve the SOC toolset and infrastructure.
   

Requirements:

Education & Certification:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field.

• Relevant certifications such as CompTIA Security+, CEH, GCIA, GCIH, or equivalent are preferred.

Technical Skills:

• Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, LogRhythm, ArcSight).

• Familiarity with EDR, firewalls, IDS/IPS, threat intel platforms, and vulnerability scanners.

• Knowledge of scripting (e.g., Python, PowerShell, Bash) is a plus.

• Understanding of network protocols, system administration (Linux/Windows), and cybersecurity principles.
   

Soft Skills:

• Strong analytical and problem-solving skills.

• Good communication and collaboration abilities.

• Able to work under pressure and in a 24x7 operational environment (if required).

Job Requirements