Senior Specialist, IT Security

Job Purpose

The Senior Information Security Specialist is responsible for supporting the organization's computers, networks, and data against threats, such as security breaches, computer viruses, or attacks by cyber-criminals. This senior-level role requires foundational knowledge and experience in the field of information security and incident response.

Key Responsibilities

• Mentor junior information security specialists.
• Engineer integrations between IT systems and the SIEM.
• Manage security system posture through configuration checks.
• Support in developing and implementing security policies: Assist in creating protocols aimed at securing data and information systems.
• Assist in monitoring for security breaches within the Security Operations Center (SOC).
• Regularly monitor the organization's networks and systems for security breaches or intrusions under the guidance of senior team members.
• Incident response support: Assist in incident response activities and support a technical and forensic investigation into how the breach happened and the extent of the damage.
• Proactively search for indicators of compromise (IOCs) and advanced threats.
• Use threat intelligence and behavioral analytics to identify anomalies.
• Work with the network team on administering network firewall rules.
• Manage and optimize email filtering, anti-phishing, and anti-malware solutions.
• Investigate email-based threats and implement preventive measures.
• Design and enforce DLP policies across endpoints, email, and cloud services.
• Analyze incidents and ensure sensitive data is protected. Monitor threat intelligence events and respond to indicators of compromise.
• Security risk assessment and mitigation: Conduct regular audits to ensure that systems are being protected as planned and to identify any weaknesses that might make information systems vulnerable to attack.
• Develop and maintain IR playbooks and conduct post-incident reviews.
• Training and awareness: Assist in developing security standards, best practices, and systems requirements; support in training the workforce on information security through awareness campaigns and educational programs.
• Stay current on IT security trends and news: Continually update the cybersecurity strategy to leverage new technology and threat information.

Job Requirements

Education

• Bachelor of Science in Computer Science, Cyber Security, or a related field.
• Strong knowledge of SIEM, EDR, DLP, NDR, XDR, SOAR, and email security platforms.
• Preferred: CISSP, GCIA, GCIH, CEH, CompTIA Security+, OSCP
• Preferred: ISO27001 certification.
• Preferred: ITIL v3+ Foundation certification.

Experience

• 2-5 years of Cyber Security experience