Job Description

Position Responsibilities:

Threat Detection & Monitoring:

• Monitor security events and alerts across endpoints, servers, cloud environments, networks, andcollaboration platforms. 
• Investigate and triage security alerts generated by security monitoring tools, SIEM platforms, EDR/XDRsolutions, and threat intelligence sources. 
• Identify suspicious activities, indicators of compromise (IOCs), and potential security incidents. 
• Perform event correlation and analysis to detect emerging threats and security anomalies. 

Incident Response &ThreatHunting: 

• Participate in cybersecurity incident response activities, including identification, containment, eradication, recovery, and post-incident reviews. 
• Conduct threat hunting activities to proactively identify malicious behaviors, attack techniques, and hidden threats within the environment.
  Support forensic investigations by collecting and analyzing logs, system artifacts, and security evidence. 

Vulnerability & Risk Management: 

• Coordinate and performvulnerability management programs, ensuring regular scanning, risk prioritization, and timely remediation. 
• Conduct advanced risk assessments to identify and address security gaps within infrastructure, applications, and cloud environments.
• Implementrisk mitigation strategies aligned with business objectives. 

 Security Policy Development & Compliance:

•  Design, implement, and maintain security policies, standards, and procedures to meet regulatory requirements (e.g., GDPR, HIPAA, NIST, ISO 27001). 
• Guide compliance audits and ensure continuous improvement of security controls.  

Security Tool Management & Optimization:

• Manage and enhance security tools, including firewalls, SIEM platforms, endpoint protection solutions, and intrusion detection systems. 
• Evaluate and integrate new security technologies to improve defense mechanisms 

Cloud Security:

• Monitor cloud environments for security threats, policy violations, misconfigurations, and suspicious activities. Review cloudsecurity alerts and investigate identified security events. 
• Support implementation and monitoring o fcloud security controls, including identity security, logging, and access management. 
• Assist in cloud security posture reviews and remediation of identified risks. 
• Work with Platform & Infrastructure team to strengthen cloud security governance and operational controls.   

Log Analysis & Automation:

• Perform deep-dive analysis of security logs from multiple sources to identify anomalies and potential threats. 
• Automate security processes using scripting languages (Python, Bash) and security orchestration tools.   

Security Awareness & Mentorship:

• Design and deliver security training programs for employees to foster a security-first culture.
• Support the execution of security awareness and phishing simulation programs across the organization. 

Job Requirements

Qualification and Experience

• 3+ years of hands-on experience in Security Operations (SecOps), Cloud Security, and Information Security. 
• Proven expertise in managing enterprise security tools, incident response, and cloud security best practices.
• Bachelor's Degree in Cybersecurity, Information Technology, Computer Science, Information Systems, or a related field. 
• Relevant professional certifications such as CEH, CISSP, CCSP, AWS Security Specialty, or equivalent are preferred

a Necessity, not a Luxury 

Skills