Cyber Security Engineer

Qualifications

5+ years of experience in IT Security roles. Expertise in SIEM (QRadar), EDR (SentinelOne), DLP (Digital Guardian, O365), and WAF (Cloudflare). Strong understanding of incident response processes and network security best practices. Familiarity with ISO 27001 & ISO 27701 compliance. Ability to analyze logs, identify anomalies, and fine-tune SIEM to reduce false positives. Excellent documentation, reporting, and communication skills. Job Description

Monitor and analyze security events using QRadar SIEM, coordinating with the 24/7 SOC team for incident escalation and resolution. Integrate threat intelligence from SOC Radar into detection strategies and create custom SIEM rules for proactive threat hunting. Act as the first responder for cybersecurity incidents, ensuring timely detection, containment, and remediation. Administer and maintain Endpoint Detection & Response (SentinelOne) for full coverage and zero downtime. Manage and optimize Data Loss Prevention (DLP) policies in Digital Guardian and Microsoft O365. Administer Cloudflare WAF to protect web applications from external threats. Conduct monthly user access reviews and firewall access reviews for compliance. Monitor email security and respond to suspicious activities promptly. Support internal and external audits (ISO 27001 & ISO 27701) with accurate evidence. Track and manage license usage and renewal for all security tools. Prepare periodic reports on security incidents, threat trends, and recommended improvements.

#J-18808-Ljbffr