It's fun to work in a company where people truly BELIEVE in what they are doing!
We're committed to bringing passion and customer focus to the business.
Position Objective (The purpose of role in current business/market scenario):
- We are seeking passionate cyber security professionals for our 24/7 security operations team, who will provide support to Halma Group's centralized infrastructure.
- Perform real time monitoring on malicious activities, analyse logs looking for attack patterns to ensure infiltration attempts are identified and dealt in a timely manner
- He/she will be responsible for managing technical support requests pertaining to Security devices integrated in Halma's infrastructure.
- Provide first line of support for Halma and its subsidiary company infrastructure security.
Responsibilities (KRAs / Deliverables / Job Expectations)
- Perform real time security monitoring and incident response activities across the networks, leveraging a variety of tools and techniques
- Create and improve Incident Response Playbook
- Perform post incident reviews to improve and tune Halma's incident response capability
- Provide support to the team members while investigating alerts escalated by MSSP & work closely with Leads.
- Provide support in the area of Azure Active directory, Intune (conditional access/MDM), single sign on and Multifactor Authentication, Microsoft Defender for Endpoint, Microsoft Defender for Server, Office 365 email security.
- Monitor and respond to security incidents for Halma PLC and Subsidiary companies. Interact with end-users and IT Managers of Halma and Subsidiary companies during investigations, to raise awareness and training opportunities.
- Create and Maintain KB articles & SOPs for all the applications related to SOC to ensure security best practices in the team.
- Should be able to work on Incident and Security Reports Independently.
Critical Success factors (critical / high impact aspects of role):
- Successfully resolve security incidents, infrastructure support & service requests within SLA.
- Contribute to improving processes, systems and services provided by Halma IT.
- Identification of Security Risks and threats to the Group.
- Cyber security mindset is key and taking appropriate action on any cyber incident is the major aspect of this role.
Academic Qualification
- Bachelor's in computer science/IT
- Preferred Certifications:
- CompTIA Security+, CEH
- Microsoft Security certifications like SC-200/SC-300/SC-400
- Desirable Certifications:
- any SIEM certifications, any Network certifications
Experience (exposure)
- Total experience 2-3 years
- Exposure to security technologies including Incident Response, Microsoft Defender, Azure Sentinel.
- Knowledge of network fundamentals TCP/IP, SSL/TLS, DNS, DHCP.
- Hands on experience to Microsoft technologies like 365 ATP Defender, Endpoint Manager (Intune- conditional access/MDM/MAM) and KQL knowledge.
- Any vendor firewall and Remote Access solutions.
- Good to have Cato Networks (VPN and Firewall), Azure Active Directory, Data leak prevention technologies.
Key Attributes (critical Functional Competencies)
- High integrity
- Diligent
- Honesty
- Great communication
- Great Team Player
Competencies (fundamental Skills And Attitudes)
- Good documentation skills
- Good written and spoken English is a must
- Excellent problem-solving skills
- Effective communication with business stakeholders
- Broad range of technical skills, with a focus on Security and Risk
- Must be willing to mentor other Team members to grow as a team.
If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!
Not the right fit Let us know you're interested in a future opportunity by clicking Introduce Yourself in the top-right corner of the page or create an account to set up email alerts as new job postings become available that meet your interest!
