The candidate will be part of the information security operations team working in a 24x7 environment. The position requires interaction with various levels of management. Applicant must be a positive, flexible, self-starter requiring minimal supervision, and able to excel in a fast-paced environment. Communication skills are critical with the ability to verbalize and provide documentation to both technical and non-technical audiences. Applicants must be detail-oriented and have the ability to multi-task effectively.
Job Duties:
- Evaluate the security of Active Directory Infrastructure and Azure services against industry best practices.
- Be the technical escalation point for security concerns related to Microsoft Windows, Active Directory and Azure services.
- Conduct reviews and analysis of Microsoft Windows, Active Directory and Azure logs, to identify, contain, eradicate, and ensure recovery from incidents
- Act as forensic investigations subject matter expert
- Analyse firewall logs, network logs, and server logs and application logs to investigate events and incidents for anomalous activity
- respond to ongoing incidents, investigate historical compromises, and provide adept analysis and findings
- Work closely with the security team towards continuous improvement of security services
- Develop scripts, tools, and procedures to automate scans, assessments, and other monitoring and discovery activities.
- Deliver scheduled and ad-hoc reports
- Keep up to date knowledge of current vulnerabilities and security threats.
- Perform other duties as assigned
Requirements
- Bachelor's Degree in Computer Science, Computer Engineering, or STEM majors
- A professional certificate like RHCSA, MCSA, CEH, CCNA, CISSP or CISM is a plus
- 5 years of experience in information technology or information security
