YNV Group
Security Operations (SecOps) Administrator
YNV Group, Chicago, Illinois, United States, 60290
Overview
We’re seeking a skilled and proactive Security Operations (SecOps) Administrator to play a critical role in protecting our organization’s digital infrastructure. This hands-on engineering role involves monitoring, detecting, and responding to security threats; managing a range of security tools and platforms; and ensuring compliance with internal and external standards. The ideal candidate will have a strong understanding of network security, endpoint protection, SIEM, and incident response in a global, hybrid-cloud environment. Helping people thrive and grow in the modern digital world.
YNV Group has been building successful businesses that deliver long-term value since 2010. As a privately owned holding company, we excel at identifying and addressing unmet market needs. With a global workforce of over 6,000 employees across the Americas, EMEA, and Asia, our portfolio spans technology, real estate, and financial services. Led by industry experts committed to sustainable growth and innovation, we prioritize building lasting relationships with our clients and partners, ensuring their needs remain central to our approach. The brands in our portfolio include: TeKnowledge, Everty, Sandglass, Monifai and Smart Factoring.
Responsibilities
Implement and manage Palo Alto and Cisco ASA firewalls, including VPN gateways, security policies, routing, security hardening, and device configurations in a global environment Administer and optimize security tools including Microsoft Defender XDR, Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps, and Microsoft Sentinel Implement and manage Microsoft Purview Information Protection and Data Loss Prevention (DLP) solutions Manage Azure security and networking, including Conditional Access Policies, Virtual Network Gateways, Microsoft Defender for Cloud, Microsoft Entra ID Protection, and Azure Arc Leverage familiarity with Darktrace Email Services as a plus Lead incident response and root cause analysis, including containment and remediation Perform security hardening based on vulnerability assessments and coordinate patching and remediation Collaborate with infrastructure, DevOps, and application teams to embed security into operational workflows Maintain detailed documentation of incidents, procedures, and configurations Participate in on-call rotations and support business continuity and disaster recovery planning
Qualifications
Bachelor’s degree in Computer Science, Information Security, or a related field
3+ years of experience in a Security Operations, SOC, or cybersecurity engineering role
Preferred certifications: AZ-500, CompTIA Security+, or GIAC
Experience in hybrid cloud environments and global enterprise settings is a plus
ITIL v3 or v4 Foundation experience is a plus, but not required
Strong understanding of cybersecurity principles, threat detection, and incident response
Proficiency in the Microsoft Security Stack: Sentinel, Defender XDR, Entra ID Protection, Conditional Access, etc.
Experience with firewall platforms such as Palo Alto and Fortinet, SIEM/SOAR, and EDR/XDR technologies
Strong grasp of basic networking concepts
Familiarity with Zero Trust architecture, RBAC, and Just-in-Time access controls
Knowledge of Microsoft KQL or other query languages
Advantageous: scripting and automation skills in Python, PowerShell, Ansible, or Terraform
Analytical thinking with proven ability to assess system performance and implement improvements
Ability to work independently and collaboratively across time zones
Strong verbal and written communication skills for effective stakeholder interaction
Customer-centric mindset with commitment to high-quality service and quick issue resolution
Proactive attitude towards innovation and process improvement
Strong team collaboration skills and alignment with broader business goals
High attention to detail in data integrity, system optimization, and documentation
Willingness to learn new technologies and stay current with industry trends
Active involvement in security assessments and incident response protocols
Vigilant protection of customer data and active mitigation of security risks
Adherence to change management protocols for implementing system changes
Provide technical support to internal cross-functional teams
Ensure compliance with global IT policies, standards, and procedures
Deliver weekly/monthly reports and system health checklists
Maintain comprehensive and current documentation of all changes and new implementations
#J-18808-Ljbffr
We’re seeking a skilled and proactive Security Operations (SecOps) Administrator to play a critical role in protecting our organization’s digital infrastructure. This hands-on engineering role involves monitoring, detecting, and responding to security threats; managing a range of security tools and platforms; and ensuring compliance with internal and external standards. The ideal candidate will have a strong understanding of network security, endpoint protection, SIEM, and incident response in a global, hybrid-cloud environment. Helping people thrive and grow in the modern digital world.
YNV Group has been building successful businesses that deliver long-term value since 2010. As a privately owned holding company, we excel at identifying and addressing unmet market needs. With a global workforce of over 6,000 employees across the Americas, EMEA, and Asia, our portfolio spans technology, real estate, and financial services. Led by industry experts committed to sustainable growth and innovation, we prioritize building lasting relationships with our clients and partners, ensuring their needs remain central to our approach. The brands in our portfolio include: TeKnowledge, Everty, Sandglass, Monifai and Smart Factoring.
Responsibilities
Implement and manage Palo Alto and Cisco ASA firewalls, including VPN gateways, security policies, routing, security hardening, and device configurations in a global environment Administer and optimize security tools including Microsoft Defender XDR, Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps, and Microsoft Sentinel Implement and manage Microsoft Purview Information Protection and Data Loss Prevention (DLP) solutions Manage Azure security and networking, including Conditional Access Policies, Virtual Network Gateways, Microsoft Defender for Cloud, Microsoft Entra ID Protection, and Azure Arc Leverage familiarity with Darktrace Email Services as a plus Lead incident response and root cause analysis, including containment and remediation Perform security hardening based on vulnerability assessments and coordinate patching and remediation Collaborate with infrastructure, DevOps, and application teams to embed security into operational workflows Maintain detailed documentation of incidents, procedures, and configurations Participate in on-call rotations and support business continuity and disaster recovery planning
Qualifications
Bachelor’s degree in Computer Science, Information Security, or a related field
3+ years of experience in a Security Operations, SOC, or cybersecurity engineering role
Preferred certifications: AZ-500, CompTIA Security+, or GIAC
Experience in hybrid cloud environments and global enterprise settings is a plus
ITIL v3 or v4 Foundation experience is a plus, but not required
Strong understanding of cybersecurity principles, threat detection, and incident response
Proficiency in the Microsoft Security Stack: Sentinel, Defender XDR, Entra ID Protection, Conditional Access, etc.
Experience with firewall platforms such as Palo Alto and Fortinet, SIEM/SOAR, and EDR/XDR technologies
Strong grasp of basic networking concepts
Familiarity with Zero Trust architecture, RBAC, and Just-in-Time access controls
Knowledge of Microsoft KQL or other query languages
Advantageous: scripting and automation skills in Python, PowerShell, Ansible, or Terraform
Analytical thinking with proven ability to assess system performance and implement improvements
Ability to work independently and collaboratively across time zones
Strong verbal and written communication skills for effective stakeholder interaction
Customer-centric mindset with commitment to high-quality service and quick issue resolution
Proactive attitude towards innovation and process improvement
Strong team collaboration skills and alignment with broader business goals
High attention to detail in data integrity, system optimization, and documentation
Willingness to learn new technologies and stay current with industry trends
Active involvement in security assessments and incident response protocols
Vigilant protection of customer data and active mitigation of security risks
Adherence to change management protocols for implementing system changes
Provide technical support to internal cross-functional teams
Ensure compliance with global IT policies, standards, and procedures
Deliver weekly/monthly reports and system health checklists
Maintain comprehensive and current documentation of all changes and new implementations
#J-18808-Ljbffr