Description

• Minimum of 4 years experience in CyberSecurity in an enterprise environment. 
• Familiarity with vulnerability management tools (e.g., Nessus, Qualys, InsightVM). 
• Hands-on experience with endpoint detection and response (EDR) solutions (e.g., CrowdStrike, SentinelOne). 
• Strong understanding of TCP/IP, DNS, and VPNs. 
• Ability to analyze network traffic using tools like Wireshark. 
• Knowledge of firewall and IDS/IPS configurations. 
• Understanding of network segmentation and hardening techniques 
• Hands-on experience in responding to and analyzing security incidents. 
• Familiarity with frameworks like MITRE ATT&CK. 
• Understanding of frameworks such as NIST, ISO 27001, or CIS Controls. 
• Familiarity with compliance requirements (e.g., HIPAA, GDPR, PCI-DSS). 
• Strong problem-solving and analytical skills. 
• Excellent communication and documentation abilities, particularly in translating technical findings to business stakeholders. 

• Experience with cloud security tools and environments (e.g., AWS, Azure, GCP). 
• Scripting experience with Python, PowerShell, or Bash for automation. 
• Knowledge of SOAR platforms for incident response automation. 
• Certifications such as CompTIA Security+, CEH, CySA+, or GIAC GSEC. 
• Exposure to malware analysis and digital forensics tools (e.g., EnCase, FTK). 

• Actively monitor and respond to security alerts and incidents using SIEM and EDR tools. 
• Perform vulnerability assessments and assist with remediation plans. 
• Analyze threat intelligence feeds to identify and mitigate potential risks. 
• Audit existing environments for compliance and visibility. 
• Assist in maintaining and improving the organization’s compliance with relevant security frameworks and regulations. 
• Collaborate with cross-functional teams to implement security best practices. 
• Create and maintain security documentation, including incident reports and risk assessments. 
• Contribute to employee security awareness training and phishing simulations.