Experience range: 3 to 6yrs
Job Description :
6+ years of hands-on experience with Microsoft Intune, Autopilot, and endpoint configuration..
Strong knowledge of Azure security services and hybrid cloud security architecture.
Proficient in utilizing Microsoft and Palo Alto security tools and implementing best practices in network . and Infrastructure security
Hands-on expertise with enterprise SIEM and XDR platforms.
Experience with firewall administration and application security technologies.
Good understanding of industry frameworks (NIST CSF, ISO 27001, CIS Controls).
- Security Operations & Monitoring
- Monitor and triage security alerts and incidents generated by the Security Operations Center (SOC).
- Investigate and respond to XDR alerts (e.g., Microsoft Defender XDR), correlating signals across various data sources and threat vectors.
- Utilize Microsoft Sentinel for log analysis, threat detection, and orchestration of incident response.
- Incident Response & Remediation
- Assess and prioritize security incidents, coordinate remediation actions with relevant stakeholders for effective resolution.
- Conduct root cause analysis, post-incident reviews, and maintain documentation for continuous improvement.
- Infrastructure & Application Security
- Collaborate with infrastructure and application teams to embed security best practices across system and software lifecycles.
- Configure and maintain Azure Front Door and Web Application Firewall (WAF) rules in alignment with application security standards.
- Support security configurations for Microsoft Azure cloud services and hybrid networks.
- Vulnerability Management
- Analyze Qualys vulnerability reports and lead mitigation efforts with application and infrastructure teams.
- Ensure timely patching, configuration fixes, and validate risk closure processes.
- Security Governance & Compliance
- Enforce adherence to cybersecurity policies and controls; assist with audit readiness and compliance reporting (e.g., NIST, CIS, ISO standards).
- Participate in secure onboarding of new tools and technologies, ensuring regulatory and security alignment.
- Network & Perimeter Security
- Administer, design and support Palo Alto (cloud and on-premises) and Fortinet firewalls.
- Review and update security rule sets, NAT policies, VPN configurations, and threat prevention features.
- MDM Management and optimization of Intune
- Technical Environment / Tools:
- Firewalls: Palo Alto (on-prem and cloud), Fortinet
- Cloud: Microsoft Azure (Security Center, Azure Front Door, WAF)
- SIEM/XDR: Microsoft Sentinel, Microsoft Defender XDR
- Vulnerability Management: Qualys VMDR
- Security Standards: NIST, CIS Benchmarks, ISO/IEC 27001
Prefferd certification (if Any):
· Microsoft Certified: Security Operations Analyst Associate (SC-200)
· Microsoft Certified: Azure Security Engineer Associate (AZ-500)
· Microsoft Certified: Cybersecurity Architect Expert (Sc-100)
Good to have skills:
· Basic Knowledge on Azure Infra ,M365 and Intune
