Security Operations Specialist

ResponsibilitiesMaintain and enhance cybersecurity tools and solutions, including SIEM, EDR, SOAR, Vulnerability Management, HIDS/NIDS technologies, Data Loss Prevention, Network Proxy and Open-Source Tools.Maintain and enhance log sources (e.g., firewalls, servers, endpoints, cloud platforms) for centralized monitoring, ensuring comprehensive visibility and correlation in SIEM platforms.Maintain secure configurations for network devices, proxies, and cloud infrastructureAutomate security processes using scripting (e.g., Python, Bash) to enhance threat detection, log analysis, and incident response workflows.Conduct vulnerability assessments and support the end-to-end vulnerability management lifecycle, prioritizing remediation for critical systems.Integrate security controls into development pipelines, ensuring secure software development and deployment.Monitor and analyze security logs to detect anomalies, cross-referencing with approved domains and app traffic.Support digital forensic investigations and e-Discovery, analyzing logs and endpoints for evidence of compromise.RequirementAt least 5-8 years of experience in Information Security, Computer Science, or related field, or equivalent experience.Working Experience with SIEM, EDR, SOAR, Vulnerability Management, HIDS/NIDS technologies, Network Proxy and Open-Source ToolsStrong scripting skills in Python, Bash, or similar languages for automation and log analysis.Experience with cloud security (e.g., AWS, GCP, Azure) and managing log sources from cloud platforms.Experience with DevSecOps and integrating security into CI/CD pipelines.Exposure to container security (e.g., Docker, Kubernetes) and cloud-native tools.Understanding of network protocols, firewall configurations, and secure proxies.Excellent problem-solving and analytical skills, with a focus on process automation.Ability to work under pressure, managing multiple priorities in a fast-paced environment.Collaborative mindset, working effectively with diverse teams to champion cybersecurity.