Availability to work on nightshift schedules (flexible)
8+ years in security operations or cybersecurity engineering with a heavy focus on Azure security solutions
Hands-on mastery of the Microsoft security stack: Azure AD, Microsoft Sentinel, Defender for Endpoint/Identity/Cloud Apps, Intune, and Windows Server hardening
Proven experience authoring and operationalizing SIEM use cases and SOAR playbooks, building and tuning them
Familiarity with vulnerability scanning tools such as Nessus or Qualys, with experience driving remediation workflows with asset owners
Strong background with EDR, firewalls, IDS/IPS, vulnerability scanners, and encryption protocols
Proficiency in PowerShell scripting; working knowledge of AWS security services including GuardDuty, Security Hub, and IAM
Experience with threat intelligence platforms and operationalizing CTI fee...