Continuously monitor security alerts and events from various sources including Microsoft 365 Security and Compliance Center, AWS Control Tower, Endpoint Security, System Logs, IDS/IPS, Firewalls, and other security tools.
Perform in-depth analysis of security incidents to determine root causes, impacts, and develop remediation strategies.
Respond promptly to security incidents, leading efforts to contain and remediate threats. Document and report security incidents, including actions taken and outcomes.
Ensure a secure and compliant AWS environment by overseeing the configuration, monitoring, and maintenance of AWS Control Tower. Configure guardrails and policies within AWS Control Tower to enforce security standards and best practices.
Ensure a secure and compliant Microsoft 365 environment by overseeing the configuration, monitoring, and maintenance of security features, including Advanced Threat Protection, Data Loss Prevention, Identity and Access Management, Multifactor authentication, and conditional access.
Proactively identify vulnerabilities and weaknesses in the organizations systems and applications by utilizing ethical hacking techniques and conducting regular security audits. Recommend corrective actions to enhance security posture.
Work closely with IT and DevOps teams to integrate security practices into the development and deployment processes.
Stay updated with the latest developments in the field, assess emerging security technologies and provide recommendations for adoption where they align with the organizations security needs and enhances the overall security posture.
Qualification and Experience
Bachelors degree in computer science, information security, or a related field.
Industry certification related to AWS and Microsoft Azure security will be advantageous.
Over 5 years of professional experience in cybersecurity, with a strong focus on AWS and Microsoft systems.
Familiarity with NIST Cyber Security Framework and NIST Incident Response Framework.
Proficient in using security monitoring tools such as Microsoft Security Center, AWS Control Tower, and other related tools.
Skilled in conducting comprehensive penetration tests, vulnerability assessments, and security audits.
Expert in ethical hacking techniques, including network scanning, enumeration, exploitation, and privilege escalation.
Experience with common security controls such as data loss prevention (DLP), single sign-on (SSO), multi-factor authentication (MFA), conditional access, Identity protection, EDR, IDS/IPS and encryption.
Experience with SIEM platforms, including implementation and management of Microsoft Sentinel.
Strong knowledge of Windows and Linux operating systems.
Ability to analyze complex data and security logs to quickly identify potential threats and vulnerabilities.
Experience analyzing attacker techniques at all stages of a breach.
Commitment to upholding ethical standards and treating sensitive information with discretion and professionalism.
Ability to work independently and as part of a team in a fast-paced environment.
