Cyber Security Architect - SIEM Tools (5-8 yrs)

Job Description :

We are seeking a motivated and detail-oriented Cybersecurity Engineer to join our dynamic team.

In this role, you will contribute to safeguarding the confidentiality, integrity, and availability of organizational assets.

You will work on threat monitoring, event analysis, incident response, and security tool configuration, leveraging cutting-edge technologies to detect and mitigate cyber threats.

This role requires a blend of technical expertise, critical thinking, and a proactive approach to maintaining and improving the organization's security posture.

Key Responsibilities :

Threat Monitoring & Detection: Manage and configure Microsoft Defender and Purview Compliance security solutions to monitor for threats, respond to alerts, and mitigate risks.

Security Tool Management: Utilize platforms such as Microsoft Defender Suite, Red Hat, Splunk, Sentinel, Tenable, and CyberArk to ensure robust security measures.

Vulnerability Assessment: Perform vulnerability, configuration, and compliance assessments in line with industry best practices and NIST guidelines.

Policy Implementation: Develop and implement security policies, procedures, and controls to enhance overall security posture.

Data Protection: Manage data classification, retention policies, and data loss prevention (DLP) configurations using Microsoft Purview.

Incident Response: Analyze security events, investigate incidents, and provide detailed reports to stakeholders.

Education & Awareness: Assist and educate users on security procedures and best practices to promote a culture of cybersecurity awareness.

Continuous Improvement: Stay updated on the latest security trends and issues to reduce potential vulnerabilities and recommend enhancements.

Qualifications.

Required.

- Bachelor's degree in Computer Science, Cybersecurity, or a related field.

- Minimum of 5 years of experience in cybersecurity engineering, including areas such as cloud security, endpoint protection, application security, or incident response.

- Expertise in Microsoft Defender Suite (Defender for Endpoint, Office 365, and Cloud Apps).

- Strong understanding of cybersecurity concepts, including threat analysis, vulnerability management, and incident response.

- Experience with SIEM tools (e.g , Splunk, Sentinel) and log analysis.

- Knowledge of network protocols and security best practices.

- Proficiency in Microsoft Purview compliance portal functionalities.

Preferred :

- Familiarity with compliance frameworks such as NIST RMF, GDPR, HIPAA, and CCPA.

- Experience with GRC tools and processes, including audits and business continuity planning.

- Knowledge of Microsoft 365 services like Exchange Online, SharePoint, OneDrive, and Teams.