Senior Security Operations Specialist

The Senior Security Operations Specialist will be responsible for the design, implementation, configuration, and optimization of security controls across the organization’s on-premises and cloud environments. While the SOC operations and SIEM monitoring are managed by an outsourced service provider, this role will act as the internal technical authority for reviewing SOC alerts, validating incidents, implementing security recommendations, and ensuring that all preventive and detective controls are properly tuned and effective. The specialist will Services closely with IT, netServices, and application teams to ensure secure configurations and continuous improvement of the overall security posture.

Key Responsibilities
• Act as the primary technical resource for security operations and control implementation within the organization.
• Review, validate, and investigate alerts or incidents escalated by the outsourced SOC.
• Implement and fine-tune security controls including firewalls, IPS/IDS, endpoint protection, and cloud security configurations.
• Manage and maintain endpoint security tools such as EDR/XDR, antivirus, and DLP to ensure effective protection and response.
• Design and implement cloud security configurations (Azure, AWS, or GCP), ensuring compliance with organizational standards and best practices.
• Configure, manage, and optimize Cisco ISE for netServices access control, posture validation, and identity-based access enforcement.
• Collaborate with SOC service providers to review and act on incident reports, threat intelligence, and recommended actions.
• Conduct detailed security investigations, root cause analysis, and document findings for future reference.
• Implement and maintain firewall policies, VPN configurations, and intrusion prevention rules according to security best practices.
• Regularly review and update security configurations to ensure alignment with new threats and compliance requirements.
• Coordinate vulnerability management activities with relevant IT and infrastructure teams for timely remediation.
• Develop and maintain security documentation, including configurations, standards, and operational procedures
• Assist in audit and compliance reviews, providing evidence of implemented controls and mitigations.
• Continuously assess new technologies and recommend security enhancements to strengthen protection layers.
• Support awareness and training initiatives by promoting good security practices among technical teams


Requirements

• Bachelor’s degree in computer science, Information Security, or related discipline.
• Preferred certifications: CISSP, CISM, CEH, GIAC (GCIA/GCIH/GCFA), or equivalent.
• Vendor-specific certifications such as Cisco Security (CCNP Security, ISE Specialist), Palo Alto PCNSE, or Fortinet NSE preferred.
• Cloud Security certifications (e.g., AWS Security Specialty, Microsoft SC-200, or CCSP) are advantageous.
• ITIL Foundation certification preferred

• Minimum 10+ years’ experience in IT Security Operations, Security Engineering, or related roles.
• Proven expertise in security control implementation and management, including firewalls, IPS/IDS, endpoint protection, and cloud security.
• Strong understanding of netServices access control (NAC) and hands-on experience with Cisco ISE configuration and policy management.
• Ability to interpret SOC alerts, perform validation and deeper investigation using internal tools.
• Proficiency in firewall administration and policy tuning (Palo Alto, Fortinet, Cisco Firepower, or equivalent).
• Experience with EDR/XDR platforms and endpoint hardening practices.
• Servicesing knowledge of cloud-native security tools (Azure Security Center, AWS GuardDuty, etc.) and secure cloud configurations.
• Good understanding of vulnerability management, risk mitigation, and patch coordination processes.
• Familiarity with SIEM/SOAR concepts and the ability to collaborate effectively with managed SOC providers.
• Knowledge of security frameServicess such as ISO 27001, NIST, MITRE ATT&CK, and CIS Controls.
• Excellent analytical, troubleshooting, communication, and reporting skills.
• Strong collaboration skills for Servicesing with SOC vendors, internal IT teams, and business stakeholders.