Key Responsibilities:

1. Security Operations & Incident Response:

• Monitor security tools and systems for potential threats and anomalies.
• Respond to and investigate security alerts and incidents according to established procedures.
• Escalate complex incidents to senior security engineers or management as needed.
• Document incident details, including analysis, containment, eradication, and recovery steps.
• Participate in the development and improvement of incident response playbooks.
• Personally perform forensic analysis on compromised systems to identify the root cause and scope of the attack.

2. Vulnerability Management:

• Assist in the planning and execution of vulnerability scans across the network, applications, and cloud environments using various security tools.
• Analyze and interpret vulnerability scan results to identify and prioritize security risks.
• Work with system owners and IT teams to facilitate the remediation of identified vulnerabilities.
• Track the progress of remediation efforts and provide regular reports on the organization's vulnerability posture.
• Contribute to the continuous improvement of the vulnerability management program.

3. General Security & Collaboration:

• Stay current with the latest cybersecurity threats, trends, and technologies.
• Collaborate with other IT teams (e.g., Network, System Administration, Development) to ensure security best practices are integrated into all projects.
• Provide security guidance and support to internal teams and end-users.
• Participate in security audits and compliance reviews.
• Assist in aligning the organization's security practices with recognized security standards and frameworks (e.g., ISO 27001, NIST Cybersecurity Framework) and be able to help develop and maintain security policies and procedures following these standards.

Required Qualifications & Skills:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Relevant certifications (e.g., CompTIA Security+, CEH, GIAC certifications) are a plus.
• 1-3 years of experience in IT, with some exposure to security concepts.
• Familiarity with security tools and technologies such as SIEM, EDR, vulnerability scanners, and WAF.
• Understanding of networking protocols.
• Experience with scripting languages is a plus.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Ability to work both independently and as part of a team.
• High attention to detail and a methodical approach to work.
• A strong sense of ownership and accountability.