Acting as technical lead for security incidents.
Proactively identifying risk and hunting for threats.
Security project implementation.
Responsibility for investigating security alerts and incidents escalated after initial triage.
Defining playbooks and guiding the team to improve response and identify false positives.
Driving security data collection and process automation.
Assessment of vulnerability and threat intelligence data to define practical response measures.
Overall 4 to 7 Years experience and relevant 2 to 3 Years experience in managing and resolving IT Security incidents.
Suitable security certification or experience (e.g. CompTIA Security Plus, Certified Ethical Hacker etc.)
Experienced in Data and risk management.
Experience in information security or related field.
Experience with computer network penetration testing and techniques.
Understanding of firewalls, proxies, antivirus, and IDP/IPS concepts.
Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact.
Experience with SIEM environments and building data queries (preferably Azure Sentinel and KQL).
Broad technical background with a particular strong focus on Microsoft product sets (Azure, O365, Windows Defender ATP, etc.)
Comfortable with scripting and data management (e.g. PowerShell, KQL, Python etc.)
Exposure in working with an MNC.
Worked with Global teams.
Excellent communication skills.
A self-learner that continually seeks to expand their skills and knowledge.
An independent self-starter able to demonstrate taking ownership of and responsibility for resolving issues.
Someone able to work as part of a wider team and be confident in making decisions.