Associate Director for Cybersecurity leading test strategies at AT&T's cloud security platform. Shaping testing programs and ensuring security and reliability for cloud - native environments.
KT
Hybrid IT Security Consultant – Security Integrations
Posted 2 months ago
About the role
- IT Security Consultant responsible for security integrations and metrics for a leading global technology firm. Driving strategic security initiatives while providing operational stability and support.
Responsibilities
- Act as a Subject Matter Expert (SME) for the company’s SIEM/Log Management/SOAR solution within your scope.
- Ensure operational stability and performance of the SIEM/Log Management/SOAR solutions in scope.
- Document and maintain the SIEM/Log Management/SOAR solution.
- Monitor and recommend improvements for any solution within scope.
- Ensure Operations are performed correctly by preparing relevant trainings and Standard Operating Procedures (SOPs) for the team.
- Provide Level 3 (L3) technical support to our clients.
- Analyze, troubleshoot, and resolve issues related to SIEM, Log Management, or SOAR solutions.
- Engage external tools/vendors to resolve complex problems.
- Incorporate change management and patching for solutions within scope.
- Support the management of SIEM/Log Management/SOAR components, including log parsing/normalization, rules engine, log storage, source devices, log collection, and event monitoring.
- Build and maintain relationships with internal and external clients.
- Support the Security Group in day-to-day activities.
- Provide expert consultancy for projects.
Requirements
- Master’s degree or equivalent in Information Technology or Information Security.
- Languages: fluent English (B2/C1).
- Operational experience in Security or IT roles focused on Security (cybersecurity, IT operations, etc.).
- Technical Knowledge: Solid experience in the deployment, management, or operation of large-scale SIEM or log management solutions.
- Hands-on experience with Linux and Windows operating system troubleshooting.
- Strong knowledge in: Cloud technologies and concepts (Azure/AWS)
- Security threats and attack vectors
- Log management
- Network technologies, firewalls, and proxies
- Ability to understand complex, large-scale IT environments.
- Practical experience with observability platforms.
- Ability to document processes and procedures.
- Nice to have: Experience in security incident detection and management.
- Experience with DNS management and Web Filtering/Proxy.
- Knowledge of MITRE ATT&CK / D3FEND frameworks.
- Familiarity with SOC2, NIST, ISO27001 standards.
- Experience in project coordination or action tracking.
Benefits
- Advanced and/or fluent English is mandatory, as the role involves working with international teams
- Remote or hybrid modality, to be agreed with the manager
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cybersecurity Engineer involved in maintaining cybersecurity throughout product life cycles. Working with a skilled team to enhance security measures in critical environments.
IT Security Engineer ensuring secure data exchange in the insurance industry. Collaborating on technical security tasks and developing security systems with a focus on efficient data management.
Cybersecurity Engineer I at Travelers enhancing network security for cloud - based solutions and zero trust architectures. Collaborating on security controls and protocols across systems.
Network Security Engineer handling L2/L3 configurations, firewall management, and operational documentation. Supporting infrastructure - related projects at Arcatem by Artemys with a focus on team collaboration.
Safety & Security Specialist ensuring safety and security at Ohio’s Hospice facilities. Responding to emergencies, patrolling grounds, and communicating with law enforcement as needed.
Member of Technical Staff specializing in Cloud Security at Wind River. Implementing DevSecOps technologies and securing cloud - native environments.
Cybersecurity Consultant strengthening the Incident Response Team at Conscia. Responsibilities include onboarding, incident management, and reporting for critical security incidents.
Join Cloudflare as a Security Third Party Risk Management Specialist. Execute vendor reviews and improve Cloudflare’s Third Party Risk Program in a rapidly scaling security organization.
Cyber Security Advisor safeguarding client digital environments by addressing cyber risks at Centorrino Technologies in Melbourne and Perth. Ensuring compliance with regulations and effective incident response.