Hybrid Role Overview
This is a hybrid role (Security Operations + Desktop Support) responsible for securing an enterprise-scale IT and Operational Technology (OT) environment. The position balances remote security monitoring with physical, on‑site technical support for office and industrial plant settings.
Core Responsibilities
- Security Ops (70%) : Monitor, triage, and investigate security alerts (SIEM, EDR, Cloud). Lead incident response for phishing, malware, and unauthorized access.
- Desktop & Site Support (30%) : Provide Level 2 technical support for workstations, industrial PCs (HMIs), and end‑user hardware.
- Engineering & Hunting : Tune detection rules, perform proactive threat hunting using the MITRE ATT&CK framework, and assist with automation via PowerShell.
- Identity & Vulnerability : Manage Active Directory/Entra ID permissions and oversee vulnerability patching for end...