We are seeking a highly skilled and experienced Information Security Engineer to join our dynamic team. The ideal candidate will possess extensive hands-on experience in Cloud/Azure infrastructure with a strong focus on networking, system hardening, and security operations.

This role is essential for maintaining the security and integrity of our enterprise infrastructure, encompassing a broad range of responsibilities and technologies, including cloud environments, antivirus solutions, DLP, network intrusion detection/prevention systems, firewalls, email security gateways, and more.

The successful candidate will bring a deep understanding of cybersecurity principles, experience with incident response, and the ability to work collaboratively with various stakeholders. This is an excellent opportunity for a seasoned professional to contribute to the ongoing enhancement of our security posture in a fast-paced and evolving environment.

Key Responsibilities:

• Security Monitoring & Incident Response:
  • Develop and integrate security event monitoring and incident management services.
  • Respond to security incidents as they occur, participating actively in incident response teams.
  • Assist with playbook automation and case management to streamline security operations.

• Infrastructure Security Management:
  • Implement and maintain a baseline of system security, informed by the latest threat intelligence and industry trends.
  • Regularly review and assess cybersecurity tools, identifying gaps, and recommending improvements.
  • Maintain and manage Microsoft directory services (both on-prem and cloud-based).
  • Support and mentor Junior Analysts in managing Security Operations Center (SOC) systems.

• Cloud and Network Security:
  • Implement conditional access policies, zero trust architecture, system hardening, and least privilege access controls.
  • Oversee the configuration, management, and auditing of security tools including EDR, vulnerability management, firewalls, and secure email gateways.

• Process Development & Documentation:
  • Produce and maintain detailed documentation to ensure the standardization and repeatability of security procedures.
  • Develop additional investigative methods using a wide range of toolsets to enhance threat detection and analysis.
  • Liaise with SOC engineers to maintain up-to-date security alert dashboards, facilitating faster incident response.

• Strategic Security Guidance:
  • Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices.
  • Offer strategic and tactical security guidance, including the evaluation of technical controls and risk assessments.
  • Participate in root cause analysis of incidents, working with engineers across the enterprise to improve security resilience.

Requirements

• Required:
  • Bachelor’s degree in computer science or a related field, or equivalent experience in the information security sector.
  • Minimum of 5 years of experience in information security engineering.
  • Proficiency in scripting languages (Python/Powershell) is a key requirement.
  • Experience with SIEM solutions, including use case creation, deployment, and tuning.
  • In-depth knowledge of security frameworks such as ISO, NIST 800-53, 800-171, and C2M2.
  • Familiarity with the MITRE ATT&CK and Cyber Kill Chain frameworks.
  • Extensive experience in supporting business operations, ensuring timely incident resolution, and maintaining accurate documentation.
  • Excellent communication skills, both written and verbal.

• Desirable:
  • MS-900: Microsoft 365 Fundamentals.
  • SC-900: Microsoft Security, Compliance, and Identity Fundamentals.
  • ITIL Foundation Certificate in IT Service Management.
  • Certifications in SIEM Design, Architecture, and Analysis.
  • Broad Spectrum Cyber Course and Advanced Analyst Course.

Additional information

Benefits:

• Competitive salary and performance bonuses.
• Comprehensive health, dental, and vision insurance.
• Opportunities for professional development and certification reimbursement.
• Flexible working hours and remote work options.
• Generous paid time off and holidays.