Job
Description
Job Description You will be responsible for triaging security alerts, analyzing security events/logs for threats and malicious attacks, conducting incident response, investigations, vulnerability assessments, and security risk analysis. You will also analyze web traffic for suspicious patterns and security breaches, monitor and investigate email security threats including phishing, malware, and spam campaigns, analyze email security logs, and implement email protection policies and controls. Additionally, you will prepare compliance documentation and evidence for audits (PCI-DSS, ISO 27001, SOC2, HIPAA) and stay current with cybersecurity trends and emerging threats. Key Responsibilities - Triage security alerts and analyze security events/logs for threats and malicious attacks - Conduct incident response, investigation, vulnerability assessments, and security risk analysis - Analyze web traffic for suspicious patterns and security breaches - Monitor and investigate email security threats including phishing, malware, and spam campaigns - Analyze email security logs and implement email protection policies and controls - Prepare compliance documentation and evidence for audits (PCI-DSS, ISO 27001, SOC2, HIPAA) - Stay current with cybersecurity trends and emerging threats Skills - Experience with SIEM platforms for threat detection and analysis - Hands-on experience with security monitoring and incident response - Experience with log analysis and security event monitoring (firewall, network, servers, endpoints) - Experience with vulnerability assessment tools for security scanning - Security management experience with Windows and Linux servers for threat hunting and incident response - Experience with email security tools and anti-phishing, DLP, and encryption technologies - Strong analytical and problem-solving skills - Excellent communication abilities and team collaboration Qualifications - 3+ years of cybersecurity experience - Bachelor's degree (BE/BTech/BS) in Computer Science, IT, Cybersecurity, or related field - Preferred certifications: CompTIA Security+, CEH, SC-200 (Microsoft Security Operations Analyst), AZ-500 (Azure Security Technologies), CISSP, CISM, AWS Security Specialty, or CISA,
