Job Description

Position:

Senior Cybersecurity Engineer

Description:

About the Role:
GlobalSource IT is seeking a Senior Cybersecurity Engineer to ensure the health and operational effectiveness of enterprise security systems and to drive the overall information security program. You will manage incident response functions, troubleshoot security events, and provide status updates to leadership. Your main responsibilities include:
- Deploying tailored information security solutions to protect core business functions.
- Working extensively with Microsoft Sentinel logging, cloud security, and security controls .
- Maintaining and optimizing security tools, such as SIEM systems, IDS/IPS, CASB , and related technologies.
- Implementing and monitoring security tools, ensuring their effectiveness and completeness.
- Handling Data Loss Prevention activities.
- Creating SIEM detections based on the MITRE ATT&CK framework and suggesting improvements.
- Overseeing the development and execution of security monitoring processes and incident response plans.
- Managing cloud-based workloads, security logging, and automation tasks.
- Automating processes in the SOAR environment to improve efficiency.
- Participating in the on-call rotation for security incident escalations.

Requirements:

Required Qualifications:
- High School diploma or G.E.D. with some post-secondary coursework or equivalent experience.
- Minimum 5 years in information security/SOC , or 3-5 years in IT administration with a security focus.
- Senior-level understanding of Microsoft Sentinel .
- Proficiency in creating detections with the MITRE ATT&CK framework .
- In-depth expertise with SIEM, IDS/IPS, and other security tools .
- Strong knowledge of computing environments: Windows, OSX, Linux, Unix .
- 2+ years of experience with Microsoft Sentinel or similar SIEM.
- 2 years of experience with Microsoft Defender for Endpoint/Server or similar EDR, Microsoft CASB (or similar), and Identity and Access Management tools (Microsoft EntraID, Active Directory).
- Infrastructure/network background to design and drive solutions.
- Advanced skills in Windows and Linux operating systems.
- Proficient with scripting languages ( PowerShell, Python ) and KQL .
Preferred:
- Bachelor’s degree.
- Familiarity with ISO 27001:2022 compliance.
- Relevant certifications: SANS GSEC, GCIA, CISSP, CCSP .

Benefits:

What We Offer:
- Competitive base salary
- Full benefits package
- 401K
- Hybrid remote model (1x/month onsite in Minneapolis)
- Opportunity to work with an international firm focused on operational effectiveness in security.

Job Tags

Remote job,

Similar Jobs