Senior Cybersecurity Specialist

Job description
Job Title: Senior Cybersecurity Specialist
Job Overview:

We are seeking a highly skilled and experienced Senior Cybersecurity Specialist to join our global cybersecurity team. The ideal candidate will have a strong background in cyber threat monitoring, incident detection, and reporting, with expertise in using Elastic Agent and other relevant security tools. As a Senior Specialist, you will play a critical role in safeguarding our organization’s digital assets by monitoring and responding to security incidents on a global scale.

Responsibilities:

Utilize Elastic Agent and other advanced cybersecurity tools to monitor a distributed network of 3000 users across multiple devices and geographical locations.

Proficiency in scripting and coding languages such as Python, PowerShell, or Bash, and their application in cybersecurity tasks.
Proactively identify, analyze, and respond to security threats and incidents to ensure the confidentiality, integrity, and availability of our digital resources.

Develop and implement effective monitoring strategies to detect and mitigate cyber threats in real-time.
Collaborate with cross-functional teams to investigate and assess security incidents, ensuring timely resolution and preventing future occurrences.

Provide expertise in security event analysis, including log and event correlation, pattern recognition, and anomaly detection.
Monitor and maintain intrusion detection and prevention systems (IDS/IPS), firewalls, and SIEM solutions to ensure optimal functionality.

Generate detailed incident reports, documenting findings, analysis, and remediation steps taken.

Stay current with emerging threats and vulnerabilities, continuously refining monitoring processes and response procedures.

Mentor and provide guidance to junior members of the cybersecurity team, sharing insights and best practices.

Collaborate with the Incident Response team to enhance the organization’s overall cybersecurity posture and contribute to incident response plans.

Participate in security audits and assessments to identify gaps and recommend improvements.

Qualifications:

Bachelor’s degree in Computer Science, Information Security, or related field; master’s degree preferred.

Minimum of 5 years of hands-on experience in cybersecurity monitoring and incident response.

Proficiency in using Elastic Agent and other SIEM and security monitoring tools.

Strong understanding of cyber threat landscape, attack vectors, and common exploitation techniques.

Experience monitoring large-scale environments with global reach and diverse technology stacks.

Expertise in analyzing security event logs, network traffic, and system logs to identify patterns and anomalies.

Industry certifications such as Certified Information Systems Security Professional (CISSP), Certified Incident Handler (GCIH), Certified Information Security Manager (CISM), or equivalent.

Solid understanding of networking concepts, protocols, and security principles.

Excellent problem-solving skills, with the ability to assess complex situations and make rapid decisions under pressure.

Strong communication and interpersonal skills, with the ability to interact effectively with global teams and stakeholders.

Ability to lead and mentor junior team members, fostering a collaborative learning environment.