Senior Cybersecurity Specialist

Job Description

We are seeking a highly skilled IT Security Analyst to join our team. As a key member of the security operations team, you will be responsible for monitoring computer networks for security issues, installing security software, and documenting any security issues or breaches.

This role requires a strong background in Windows operating systems, with excellent knowledge of information security industry standards and best practices such as ISO and MITRE. You should also have strong knowledge of security as applied to Microsoft applications, Active Directory, Outlook/Exchange, and Office 365.

You will work closely with a global team to identify and remediate threats to the company. This is a hybrid role with 3 days on-site.

Key Responsibilities

• Security Monitoring & Incident Response: Monitor, detect, and triage security alerts received from Microsoft Security Tools, SIEM solutions, and other security tools.
  
• Investigate and respond to cybersecurity incidents, including root cause analysis and post-incident reporting.
  
• Lead containment, eradication, and recovery efforts during security breaches.
  
• Participate in threat hunting and threat intelligence analysis.
  
• Provide out-of-hours support during critical incident response when required.
  

Vulnerability & Risk Management

• Execute and enhance the vulnerability management program: scanning, assessment, prioritization, and remediation tracking.
  
• Collaborate with IT and business units to implement secure configurations and remediate vulnerabilities.
  
• Contribute to enterprise risk assessments and security roadmaps.
  

Security Engineering & Architecture

• Contribute to the design and enhancement of security architectures within Microsoft Azure environments, ensuring robust protection across cloud deployments.
  
• Support implementation of enterprise-wide security frameworks, policies, and reference architectures (e.g., NIST CSF).
  
• Contribute to identity & access management (IAM), data protection, and zero trust architecture initiatives.
  

Operational Security & Tooling

• Administer and optimise security solutions including SIEM, endpoint protection, IAM, and malware prevention tools.
  
• Lead or support SIEM transition projects: data source onboarding, use case development, and tuning.
  
• Research, evaluate, and recommend emerging security technologies and enhancements.
  
• Continuously assess security monitoring effectiveness and recommend improvements.
  

Governance, Processes & Best Practices

• Develop and maintain SOC processes, documentation, and incident response playbooks.
  
• Define and promote company-wide IT security best practices and policies.
  
• Assist users in understanding security protocols and installing security software.
  
• Stay current on cybersecurity trends, threats, and technologies.
  

Requirements

• A bachelor's degree in computer science, cyber security, or a related field.
  
• 7+ years of professional experience in information security, including in security operations or SOC roles.
  
• Proven experience implementing and monitoring security controls across multiple environments.
  
• Strong knowledge of:
  • Security incident management processes and methodologies.
    
  • Vulnerability management and penetration testing tools.
    
  • SIEM platforms (e.g., Microsoft Sentinel, Splunk).
    
  • Endpoint detection and response (EDR) tools.
    
  • Threat intelligence platforms and threat hunting techniques.
    
  • Microsoft security technologies (e.g., MS Defender XDR).
    
  • Cloud security, particularly in Azure.
    
  • Active Directory, Exchange, Office 365 administration.
    
  
  
• Familiarity with security frameworks and standards (e.g., NIST CSF).
  
• Familiarity with OT security standard IEC 62443 is preferred but not mandatory.
  
• Excellent problem-solving, analytical, and reporting skills.
  
• Demonstrated ability to design and implement security solutions across various technology layers.
  
• Strong interpersonal skills; capable of working independently and collaboratively.
  
• Working knowledge of OT/ICS security is desirable but not mandatory.
  
• Availability to support incident response efforts outside regular business hours.
  
• Professional certifications such as CySA+, GSEC, CISM, CISSP or equivalent.
  

---