Cyber Security Specialist – CyberSOC

We are seeking a highly skilled Cyber Security Specialist to strengthen our CyberSOC team and help safeguard a global enterprise environment against evolving cybersecurity risks. This role offers the opportunity to take ownership of critical platforms, work with advanced security tools, and collaborate with a dedicated, skilled team to make a meaningful impact.

Key Responsibilities

• Operate and manage the SIEM platform, including dataset onboarding, automation, and incident response.
• Investigate and resolve cybersecurity incidents across infrastructure, networks, operating systems, and cloud environments.
• Translate emerging threats into actionable risk mitigation strategies.
• Collaborate with cross-functional development and operations teams to ensure effective integrations and operational excellence.
• Deliver clear and concise reporting to highlight security trends and close identified gaps.
• Ensure compliance with both business requirements and relevant regulatory standards.

Who You Are

• A proactive team player with strong relationship-building skills and a customer-focused mindset.
• Analytical and detail-oriented, able to prioritize risks and drive timely resolution.
• Comfortable taking ownership of platforms while working effectively in a distributed team environment.
• Self-driven, thriving in fast-paced, enterprise-scale contexts.

Requirements

Must-Have Skills & Experience

• 5+ years of experience in cybersecurity, with hands-on expertise in cyber threat management.
• Proven experience managing SIEM platforms (onboarding, automation, and incident response).
• Broad technical knowledge across infrastructure, networks, operating systems, and cloud.
• Strong background in incident response, threat detection, and risk-based security practices.
• Familiarity with Agile methodologies and collaboration with development teams.
• Knowledge of Zero Trust principles is an advantage.

Core Competences

• SIEM Tools: CrowdStrike, Cribl Edge & Stream, Splunk Core, Splunk Enterprise Security.
• Endpoint Tools: CrowdStrike, Palo Alto Cortex XDR, Cylance Protect.
• Cloud Security: Azure Sentinel.
• Security Architecture & Design for SIEM environments.

Mandatory Skills (at least 3)

• Security Tools: CrowdStrike, Cribl, Splunk, Cylance, Palo Alto XDR.
• Platforms: Windows, Linux.
• Cloud: Azure.

Desired Skills (at least 2)

• Programming/Scripting: SPL, XQL, PowerShell, JSON.

Certifications (Preferred)

• CrowdStrike Certified Falcon Administrator (CCFA)
• CrowdStrike Certified Falcon Responder (CCFR)
• CrowdStrike Certified Falcon Hunter (CCFH)
• CrowdStrike Certified SIEM Engineer (CCSE)
• CrowdStrike Certified Identity Specialist (CCIS)
• Cribl Certified Admin – Stream
• Cribl Certified Admin – Edge
• Microsoft AZ-900, MS-900