Key skills
AWSAzureCloudCyber SecurityGoogle Cloud PlatformPythonBashPowerShellGCPGoogle CloudNetwork Security
About this role
Role Overview
- Lead the planning, deployment, and configuration of security tools, ensuring they meet organizational needs and integrate seamlessly with existing systems. Experience with SASE tools such as (Netskope/Zscaler), EDR tools such as (Crowdstrike/SentinelOne), Endpoint Privilege Management, Application Allowlisting, Email Security, SIEM Management and Detection Engineering
- Diagnose and resolve issues with security tools in real-time to maintain their effectiveness, reduce downtime, and ensure optimal performance.
- Research, test, and recommend new security technologies based on the latest threat landscape and organizational needs. Lead proof-of-concept (POC) projects to assess potential new tools.
- Work closely with IT and other teams to ensure security tools are effectively integrated with various systems, including cloud and on-premises environments.
- Develop scripts and automation processes to improve the efficiency and reliability of security tools, minimizing repetitive tasks and reducing time-to-response.
- Create and maintain detailed documentation of security tool configurations, troubleshooting procedures, and best practices to ensure consistent processes and knowledge transfer.
- Collaborate with other security teams, such as incident response and vulnerability management, to identify tool requirements, share insights, and improve overall security capabilities.
- Act as a subject matter expert on security tools, providing training and guidance to junior team members and stakeholders.
Requirements
- 3+ years of experience in cybersecurity, with a focus on security engineering, tool deployment, and troubleshooting.
- Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
- Relevant certifications, such as CISSP, GIAC, CEH, or vendor-specific certifications for security tools (e.g., CrowdStrike, Netskope, Tenable, or similar).
- Strong hands-on experience with a variety of security tools, such as endpoint protection, SIEM, vulnerability management, EDR, DLP, and network security tools.
- Deep troubleshooting skills across both hardware and software security solutions.
- Familiarity with scripting languages (Python, PowerShell, Bash) for automation of tasks related to tool deployment and management.
- Understanding of network protocols, cloud environments, and security frameworks (MITRE ATT&CK, NIST, CIS).
- Experience with configuring and managing tools in cloud environments (AWS, Azure, or GCP).
Tech Stack
- AWS
- Azure
- Cloud
- Cyber Security
- Google Cloud Platform
- Python