Specialist, Cloud Security & Vulnerability Management

We seek an intermediate level security specialist to join our Global Cybersecurity Services Team. As part of our advanced cybersecurity operating model, the position will involve optimizing our security technology stack, developing AI-based security automation workflows, and contributing to security operations and vulnerability management.

We are constructing a contemporary, multi-cloud, intelligence-driven security operations capability that heavily integrates AI and automation, necessitating skill sets in engineering and operations across all levels.

Responsibilities:

• Conduct deep-dive investigations into Tier 1 & 2 security operations escalations, perform incident triage, and root cause analysis. Proficiency in using various tools including EPP/EDR/XDR software, Digital Forensics tools, and SIEM platforms.
• Oversee the development, maintenance, and enhancement of our security operations technology stack, encompassing next-generation SIEM and SOAR solutions. Manage the life cycle of detection use cases and incorporate AI into workflows.
• Possess proficiency in end-to-end Incident Response, providing guidance during investigations, facilitating containment, mitigation, and other security responses.
• Develop, deploy, and maintain advanced cloud security controls to prevent, detect, and respond to security threats in cloud environments. Administer cloud-native security controls and manage Configuration and Vulnerability Management life cycles.
• Configure, implement, and maintain regular vulnerability scans across on-premises and cloud environments. Analyze scan results, prioritize remediation based on risks and business impacts, and collaborate with stakeholders to track progress.
• Lead security projects involving areas such as Cloud Security Posture Management, Container Security, Runtime Vulnerability Management, Threat Hunting, and Security reviews.
• Demonstrate cross-functional leadership and stakeholder management skills. Lead and mentor a team of junior security specialists.

Requirements:

• Possess 5-7 years of Information Security experience with hands-on expertise in Security Operations, Security Engineering, Digital Forensics, Incident Response, Endpoint Security, or Cloud Security.
• Have working knowledge of SIEM, EPP/EDR/XDR, SOAR, Cloud Security tools, and Digital Forensics software.
• Experience working in cloud environments like AWS, Azure, and GCP.
• Knowledge of Amazon EKS and Azure AKS for managing and securing container orchestration platforms.
• Apply AI/ML in cybersecurity use cases.
• Proficient in scripting languages for task automation and data manipulation.
• Highly motivated with attention to detail and outcome-driven mentality.
• Fluent in verbal and written English.