TESTQ Technologies Limited
Network Security and Security Operations Specialist
TESTQ Technologies Limited, Chicago, Illinois, United States, 60290
TQINE0002_4582 - Network Security and Security Operations Specialist
Experience range: 3 to 6yrs Job Description : 6+ years of hands-on experience with
Microsoft Intune, Autopilot, and endpoint configuration
.. Strong knowledge of Azure security services and hybrid cloud security architecture. Proficient in utilizing Microsoft and Palo Alto security tools and implementing best practices in network and infrastructure security Hands-on expertise with enterprise SIEM and XDR platforms. Experience with
firewall administration
and application security technologies. Good understanding of industry frameworks (NIST CSF, ISO 27001, CIS Controls). Security Operations & Monitoring
- Monitor and triage security alerts and incidents generated by the Security Operations Center (SOC). Security Operations & Monitoring
- Investigate and respond to XDR alerts (e.g., Microsoft Defender XDR), correlating signals across various data sources and threat vectors. Security Operations & Monitoring
- Utilize Microsoft Sentinel for log analysis, threat detection, and orchestration of incident response. Security Operations & Monitoring
- Assess and prioritize security incidents, coordinate remediation actions with relevant stakeholders for effective resolution. Security Operations & Monitoring
- Conduct root cause analysis, post-incident reviews, and maintain documentation for continuous improvement. Infrastructure & Application Security
- Collaborate with infrastructure and application teams to embed security best practices across system and software lifecycles. Infrastructure & Application Security
- Configure and maintain Azure Front Door and Web Application Firewall (WAF) rules in alignment with application security standards. Infrastructure & Application Security
- Support security configurations for Microsoft Azure cloud services and hybrid networks. Vulnerability Management
- Analyze Qualys vulnerability reports and lead mitigation efforts with application and infrastructure teams. Vulnerability Management
- Ensure timely patching, configuration fixes, and validate risk closure processes. Security Governance & Compliance
- Enforce adherence to cybersecurity policies and controls; assist with audit readiness and compliance reporting (e.g., NIST, CIS, ISO standards). Security Governance & Compliance
- Participate in secure onboarding of new tools and technologies, ensuring regulatory and security alignment. Security Governance & Compliance
- Administer, design and support Palo Alto (cloud and on-premises) and Fortinet firewalls. Security Governance & Compliance
- Review and update security rule sets, NAT policies, VPN configurations, and threat prevention features. MDM
- Management and optimization of Intune Technical Environment / Tools Technical Environment / Tools
- Firewalls: Palo Alto (on-prem and cloud), Fortinet Technical Environment / Tools
- Vulnerability Management: Qualys VMDR Technical Environment / Tools
- Security Standards: NIST, CIS Benchmarks, ISO/IEC 27001
Microsoft Certified: Security Operations Analyst Associate (SC-200) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Microsoft Certified: Cybersecurity Architect Expert (Sc-100) Good to have skills: Basic Knowledge on Azure Infra ,M365 and Intune #J-18808-Ljbffr
Experience range: 3 to 6yrs Job Description : 6+ years of hands-on experience with
Microsoft Intune, Autopilot, and endpoint configuration
.. Strong knowledge of Azure security services and hybrid cloud security architecture. Proficient in utilizing Microsoft and Palo Alto security tools and implementing best practices in network and infrastructure security Hands-on expertise with enterprise SIEM and XDR platforms. Experience with
firewall administration
and application security technologies. Good understanding of industry frameworks (NIST CSF, ISO 27001, CIS Controls). Security Operations & Monitoring
- Monitor and triage security alerts and incidents generated by the Security Operations Center (SOC). Security Operations & Monitoring
- Investigate and respond to XDR alerts (e.g., Microsoft Defender XDR), correlating signals across various data sources and threat vectors. Security Operations & Monitoring
- Utilize Microsoft Sentinel for log analysis, threat detection, and orchestration of incident response. Security Operations & Monitoring
- Assess and prioritize security incidents, coordinate remediation actions with relevant stakeholders for effective resolution. Security Operations & Monitoring
- Conduct root cause analysis, post-incident reviews, and maintain documentation for continuous improvement. Infrastructure & Application Security
- Collaborate with infrastructure and application teams to embed security best practices across system and software lifecycles. Infrastructure & Application Security
- Configure and maintain Azure Front Door and Web Application Firewall (WAF) rules in alignment with application security standards. Infrastructure & Application Security
- Support security configurations for Microsoft Azure cloud services and hybrid networks. Vulnerability Management
- Analyze Qualys vulnerability reports and lead mitigation efforts with application and infrastructure teams. Vulnerability Management
- Ensure timely patching, configuration fixes, and validate risk closure processes. Security Governance & Compliance
- Enforce adherence to cybersecurity policies and controls; assist with audit readiness and compliance reporting (e.g., NIST, CIS, ISO standards). Security Governance & Compliance
- Participate in secure onboarding of new tools and technologies, ensuring regulatory and security alignment. Security Governance & Compliance
- Administer, design and support Palo Alto (cloud and on-premises) and Fortinet firewalls. Security Governance & Compliance
- Review and update security rule sets, NAT policies, VPN configurations, and threat prevention features. MDM
- Management and optimization of Intune Technical Environment / Tools Technical Environment / Tools
- Firewalls: Palo Alto (on-prem and cloud), Fortinet Technical Environment / Tools
- Vulnerability Management: Qualys VMDR Technical Environment / Tools
- Security Standards: NIST, CIS Benchmarks, ISO/IEC 27001
Microsoft Certified: Security Operations Analyst Associate (SC-200) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Microsoft Certified: Cybersecurity Architect Expert (Sc-100) Good to have skills: Basic Knowledge on Azure Infra ,M365 and Intune #J-18808-Ljbffr