This role is member of the Infrastructure team which is dedicated to cloud-based migration, service enablement, and management of a secure hybrid environment. This role will be responsible for the implementation and management the security controls of identity and data across the ALG hybrid environment. The role is a hands on technical role with aspects of compliance and audit.
Technologies you will work with include, but not limited to:
- Azure AD
- Active Directory DS
- Azure IaaS
- Microsoft E5 stack
- Microsoft Defender suite of products
- Microsoft Sentinel
- Microsoft Endpoint Manager/Intune
- Microsoft Purview
- Windows server 2012-2022
- Windows 10/11
- WAN, LAN, DNS, DHCP,
- Cisco product suite
- Check Point firewall suite
- Zscaler
- Mcafee
Responsibilities for this role include the following:
- Establishing technical security and information protection controls and processes
- Design, implement, configure, and maintain the firms cloud security posture management
- Create and maintain Cloud security strategies, policies, procedures, change configurations and documentation
- Manage and be the point of contact for the third party managed SOC service
- Be responsible for and manage the full Microsoft Defender suite of products in an E5 environment
- Evaluate Azure cloud and hybrid security services, tools, and appliances in the areas of (but not limited to): Internet access, email systems, cloud security posture management, vuln detection, triage and remediation, intrusion detection, intrusion prevention and quarantine
- Be the security point of contact and escalation for all security related technical matters, issues and alerts
- Continuously improve the security posture of the firms IT systems and keep abrest of current security threats and developments that could impact the firms security posture
- Respond to security incidents
- Manage corporate SIEM/SOAR environment
- Aptitude in solving sophisticated technical challenges
- Proactively identifies and investigates potential issues in security controls
- Participate in regular Infrastructure on-call rotation for business critical out of hours support and response
- Continuously evolve and identify opportunities to improve the firms IT systems, processes and procedures in line with current recommended industry practices
- Continue to develop your skills on the job through mentoring and planned self-directed training (ESI program)
Required skills
- At least 5 years IT Infrastructure Engineering experience with a large Windows based on-prem and Microsoft Cloud environment
- With 2-3 years' experience in IT Infrastructure security
- Hands-on experience with M365 environment and Defender suite of products
- Experience managing a enterprise SIEM/SOAR (preferably Sentinel) solutions
- Strong understanding of Azure monitoring capabilities and setup rule-based alerts with response procedures
- Comfortable automating processes start to finish and can work closely with cloud engineering, third parties and application development teams to help integrate security into their existing processes
- Experience implementing security at design for architecture and new solutions
- Experience creating security documentation, audits (ISO27001) and technical process documentation
- Excellent verbal and written communication skills with a strong attention to detail
#hyrbid