Ensign InfoSecurity
Ensign is hiring !
Key Responsibilities:
-
Monitor and manage security tools (e.g., SIEM, EDR, IDS/IPS, SOAR) and ensure optimal performance and availability.
-
Assist in the deployment, configuration, and tuning of security systems to improve threat detection capabilities.
-
Conduct log analysis and threat investigations to support incident response teams.
-
Provide technical support and troubleshooting for SOC-related tools and platforms.
-
Collaborate with threat hunters and analysts to refine use cases and detection rules.
-
Maintain documentation related to configurations, processes, and technical procedures.
-
Participate in security incident response and post-mortem analysis when required.
-
Work closely with other IT and security teams to support operational security initiatives.
-
Continuously assess and improve the SOC toolset and infrastructure.
Requirements:
Education & Certification:
-
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field.
-
Relevant certifications such as CompTIA Security+, CEH, GCIA, GCIH, or equivalent are preferred.
Technical Skills:
-
Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, LogRhythm, ArcSight).
-
Familiarity with EDR, firewalls, IDS/IPS, threat intel platforms, and vulnerability scanners.
-
Knowledge of scripting (e.g., Python, PowerShell, Bash) is a plus.
-
Understanding of network protocols, system administration (Linux/Windows), and cybersecurity principles.
Soft Skills:
-
Strong analytical and problem-solving skills.
-
Good communication and collaboration abilities.
-
Able to work under pressure and in a 24×7 operational environment (if required).
Apply now
To help us track our recruitment effort, please indicate in your cover/motivation letter where (jobsinengineering.net) you saw this job posting.