Your role & responsibilities:
MS365 Security and Compliance support.
Manage endpoint security tools such as; Sophos Intercept X, Crowdstrike, InsightVM, Intune across multiple environments, including remote users, data centers, and cloud environments.
Work with IT CyberSec groups to resolve issues on security tools such as Crowdstrike, Intune, Wazuh, IPS
Review and define firewall policies in coordination with the CyberSec team.
Ensure vulnerability management tools and scans execute effectively, investigate, and resolve issues with the security-delivered tools and services.
Collaborate across Pharmacity providing technical security support during security incidents, including responding to escalated incidents, and Security Infrastructure’s services delivery.
Work with IT CyberSec Engineers to integrate security controls across hosts and virtual environments
Validate secure configuration and system hardening according to CIS.
Your skills & qualifications:
Professional major: Computer Science/Network Engineering; Others can be considered if earning good knowledge/hands-on experience in IT/Network engineering.
Proven experience with Windows environments – AD, domains, ADFS, GPO, 2FA, CIS configuration, and understanding of threats to these systems
Hands-on experience with security hardening, troubleshooting, and administration of Microsoft and Linux operating systems, hardware in virtualized environments
Administrative Office 365 experience across enterprise services
At least 5 years of experience in IT professional + 2 years at leader/supervisor position.
2-3 years of experience working on security projects for major organizations is desirable.
Knowledge of enterprise tools such as MS365 Security and Compliance, MS Teams, IAM, AWS, Azure
Experience with endpoint security software products
Strong analytical and creative problem-solving skills
Hands-on experience with NGFW Firewalls & IPS & WAF & Next-Gen Endpoint Security solutions.
Hands-on experience with SIEM/Log Analytics.
Professional certification like CISSP, CEH, SANS GSEC, GCED, GCWN, or similar, required
Ability to effectively execute security mitigations and implement controls at-scale
Hands-on experience with Vulnerability management, 2FA, Antivirus, Network IPS, Microsoft Intune, and other security applications/tools
Certified in Microsoft Office 365 and Microsoft Azure is preferred
Hands-on experience with Email Security and Connectivity Security.
