Security Systems Engineer

About The Position

Requirements

• 2–5 years experience in cybersecurity, IT operations, or technical security support.
• Hands-on experience with SIEM platforms (Sentinel, CrowdStrike, Splunk, QRadar, LogRhythm, or similar).
• Experience with endpoint security tools (Defender, CrowdStrike, or equivalent).
• Familiarity with Entra ID/Azure AD and identity security concepts.
• Basic understanding of: Vulnerability scanning tools Firewalls, IDS/IPS, and network protocols (TCP/IP, OSI model) Cloud environments, particularly Azure
• Ability to write or read basic PowerShell or Python scripts.
• Strong documentation, communication, and teamwork skills.
• Ability to take direction, learn new technologies, and adapt to changing security needs.

Nice To Haves

• Bachelor’s degree in cybersecurity, computer science, information systems, or related experience.
• Security+, CySA+, AZ-500, GSEC, or similar certification.
• Exposure to security standards such as NIST CSF, CIS Controls, ISO27001 or ITIL.
• Experience supporting security reviews or participating in architecture discussions.
• Experience with enterprise EDR/XDR platforms.
• Basic understanding of secure cloud architecture principles.

Responsibilities

• Monitor SIEM dashboards and alerts to detect suspicious activity and respond to incidents following established playbooks.
• Perform Tier 1–level incident triage and escalate to senior team members as needed.
• Assist with onboarding log sources, validating data quality, and tuning SIEM alerts and dashboards.
• Support endpoint protection technologies (EDR/XDR) including Defender and CrowdStrike.
• Monitor and manage Microsoft email quarantine.
• Perform routine vulnerability scans, validate results, track remediation progress, and coordinate with system owners.
• Document findings, maintain dashboards, and assist in prioritizing remediation efforts based on risk.
• Support operational management of SIEM platforms (Sentinel, CrowdStrike ) including basic configuration and alert refinement.
• Use PowerShell and/or Python to automate routine tasks, improve efficiency, and support data analysis.
• Assist in maintaining secure access controls using Entra ID / Azure AD and related IAM tools.
• Support enforcement of least‑privilege standards and monitor identity‑related security events.
• Assist Infrastructure team with basic troubleshooting related to firewalls, IDS/IPS, VPN, and secure network design.
• Monitor network traffic and alerts for indicators of compromise.
• Help review configuration of cloud resources for security compliance.
• Assist in monitoring cloud logs and security insights via Azure and SIEM tools.
• Contribute to security policies, standards, procedures, and knowledgebase documentation.
• Participate in internal reviews aligned with frameworks such as NIST CSF, CIS, ISO Controls, or ITIL.
• Maintain precise documentation for incidents, investigations, and system changes.
• Participate in security reviews of new systems or architecture changes with guidance from senior team members.
• Support security projects including tool deployments, enhancements, and operational improvements.
• Coordinate with vendors, support POCs, and assist with testing new security technologies.
• Work daily with Infrastructure, Service Desk, and other IT teams to investigate issues and implement security recommendations.
• Provide clear communication to business units and end users when security remediation or follow-up is needed.
• Actively contribute to a collaborative, learning-focused team culture.