It's fun to work in a company where people truly BELIEVE in what they are doing!
We're committed to bringing passion and customer focus to the business.
Position Objective
(The purpose of role in current business/market scenario)
-
We are seeking passionate cyber security professionals for our 24/7 security operations team, who will provide support to Halma Group’s centralized infrastructure.
-
Perform real time monitoring on malicious activities, analyse logs looking for attack patterns to ensure infiltration attempts are identified and dealt in a timely manner
-
He/she will be responsible for managing technical support requests pertaining to Security devices integrated in Halma’s infrastructure.
-
Provide first line of support for Halma and its subsidiary company infrastructure security.
Responsibilities (KRAs / deliverables / job expectations)
-
Perform real time security monitoring and incident response activities across the networks, leveraging a variety of tools and techniques
-
Create and improve Incident Response Playbook
-
Perform post incident reviews to improve and tune Halma’s incident response capability
-
Provide support to the team members while investigating alerts escalated by MSSP & work closely with Leads.
-
Provide support in the area of Azure Active directory, Intune (conditional access/MDM), single sign on and Multifactor Authentication, Microsoft Defender for Endpoint, Microsoft Defender for Server, Office 365 email security.
-
Monitor and respond to security incidents for Halma PLC and Subsidiary companies. Interact with end-users and IT Managers of Halma and Subsidiary companies during investigations, to raise awareness and training opportunities.
-
Create and Maintain KB articles & SOPs for all the applications related to SOC to ensure security best practices in the team.
-
Should be able to work on Incident and Security Reports Independently.
Critical Success factors (critical / high impact aspects of role)
-
Successfully resolve security incidents, infrastructure support & service requests within SLA.
-
Contribute to improving processes, systems and services provided by Halma IT.
-
Identification of Security Risks and threats to the Group.
-
Cyber security mindset is key and taking appropriate action on any cyber incident is the major aspect of this role.
Academic qualification
-
Bachelor’s in computer science/IT
-
Preferred Certifications: CompTIA Security+, CEH Microsoft Security certifications like SC-200/SC-300/SC-400
-
Desirable Certifications: any SIEM certifications, any Network certifications
Experience (exposure)
-
Total experience 2-3 years
-
Exposure to security technologies including Incident Response, Microsoft Defender, Azure Sentinel.
-
Knowledge of network fundamentals TCP/IP, SSL/TLS, DNS, DHCP.
-
Hands on experience to Microsoft technologies like 365 ATP Defender, Endpoint Manager (Intune- conditional access/MDM/MAM) and KQL knowledge.
-
Any vendor firewall and Remote Access solutions.
-
Good to have – Cato Networks (VPN and Firewall), Azure Active Directory, Data leak prevention technologies.
Key attributes (critical functional competencies)
-
High integrity
-
Diligent
-
Honesty
-
Great communication
-
Great Team Player
Competencies (fundamental skills and attitudes)
-
Good documentation skills
-
Good written and spoken English is a must
-
Excellent problem-solving skills
-
Effective communication with business stakeholders
-
Broad range of technical skills, with a focus on Security and Risk
-
Must be willing to mentor other Team members to grow as a team.
If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!
Not the right fit? Let us know you're interested in a future opportunity by clicking Introduce Yourself in the top-right corner of the page or create an account to set up email alerts as new job postings become available that meet your interest!
