ComboCurve
Cyber Security Specialist
ComboCurveUnited States19 hours ago
Full-timeEngineering, Information Technology
ComboCurve is a industry leading cloud-based software solution for A&D, reservoir management, and forecasting in the energy sector. Our platform empowers professionals to evaluate assets, optimize workflows, and manage reserves efficiently, all in one integrated environment.

By streamlining data integration and enhancing collaboration, we help operators, engineers, and financial teams make informed decisions faster. Trusted by top energy companies, ComboCurve delivers real-time analytics and exceptional user support, with a world-class customer experience team that responds to inquiries in under 5 minutes.

Key Responsibilities

  • Administer and secure Microsoft 365, Azure Active Directory, and associated cloud services.
  • Support the company’s SOC 2 compliance program through documentation, control validation, and audit readiness.
  • Manage user provisioning, access reviews, and identity lifecycle processes across corporate systems.
  • Perform vulnerability management activities, including scanning, prioritizing, and tracking remediation efforts.
  • Participate in incident response investigations, containment, and root cause analysis.
  • Assist with cloud configuration reviews and recommend improvements to align with security best practices.
  • Support SIEM monitoring and tuning, helping improve detection rules, alert fidelity, and event correlation.
  • Collaborate with IT and DevOps teams to automate security tasks and integrate secure-by-design principles into workflows.
  • Contribute to security awareness initiatives and assist with phishing simulations, endpoint compliance, and reporting.
  • Maintain up-to-date knowledge of current threats, trends, and applicable regulatory frameworks.The Cyber Security Specialist will play a key role in supporting ComboCurve’s security posture across its cloud and corporate environments. This position focuses on securing Azure and Microsoft 365 ecosystems, supporting SOC 1 and SOC 2 compliance initiatives, managing user and access controls, monitoring security alerts, and responding to incidents. The specialist will collaborate closely with infrastructure, DevOps, and compliance teams to ensure security standards are consistently met and improved.

Required Qualifications

  • Minimum of 6 years of professional experience in cybersecurity, IT security operations, or a related discipline.
  • Strong knowledge of Microsoft 365 administration and Azure security controls.
  • Experience supporting or maintaining SOC 2 controls and evidence collection.
  • Proficiency with identity and access management concepts and tools.
  • Hands-on experience with incident response, log analysis, and endpoint protection platforms.
  • Working knowledge of SIEM tools, vulnerability management, and automation practices.
  • Excellent analytical, documentation, and communication skills.

Desired Skills And Experience

  • Familiarity with Google Cloud Platform (GCP) security concepts and IAM configuration.
  • Experience with PowerShell or Python scripting for automation.
  • Understanding of cloud security frameworks such as CIS Benchmarks or NIST CSF.
  • Knowledge of DevOps or CI/CD security integration.

Preferred Certifications

  • CompTIA Security+
  • CompTIA Network+
  • Microsoft Certified: Security, Compliance, and Identity Fundamentals
  • Other equivalent or higher-level certifications (e.g., SSCP, CC, or AZ-500)

Key Skills

Ranked by relevance
Apply