Security Support Analyst

Cyber Security Professional

It's fun to work in a company where people truly believe in what they are doing! We're committed to bringing passion and customer focus to the business.

Position Objective

We are seeking passionate cyber security professionals for our 24/7 security operations team, who will provide support to Halma Group's centralized infrastructure.

Perform real time monitoring on malicious activities, analyse logs looking for attack patterns to ensure infiltration attempts are identified and dealt in a timely manner.

He/she will be responsible for managing technical support requests pertaining to Security devices integrated in Halma's infrastructure.

Provide first line of support for Halma and its subsidiary company infrastructure security.

Responsibilities

• Perform real time security monitoring and incident response activities across the networks, leveraging a variety of tools and techniques
• Create and improve Incident Response Playbook
• Perform post incident reviews to improve and tune Halma's incident response capability
• Provide support to the team members while investigating alerts escalated by MSSP & work closely with Leads.
• Provide support in the area of Azure Active directory, Intune (conditional access/MDM), single sign on and Multifactor Authentication, Microsoft Defender for Endpoint, Microsoft Defender for Server, Office 365 email security.
• Monitor and respond to security incidents for Halma PLC and Subsidiary companies. Interact with end-users and IT Managers of Halma and Subsidiary companies during investigations, to raise awareness and training opportunities.
• Create and Maintain KB articles & SOPs for all the applications related to SOC to ensure security best practices in the team.
• Should be able to work on Incident and Security Reports Independently.

Critical Success Factors

• Successfully resolve security incidents, infrastructure support & service requests within SLA.
• Contribute to improving processes, systems and services provided by Halma IT.
• Identification of Security Risks and threats to the Group.
• Cyber security mindset is key and taking appropriate action on any cyber incident is the major aspect of this role.

Academic Qualification

• Bachelor's in computer science/IT
• Preferred Certifications:
• CompTIA Security+, CEH
• Microsoft Security certifications like SC-200/SC-300/SC-400
• Desirable Certifications:
• any SIEM certifications, any Network certifications

Experience

• Total experience 2-3 years
• Exposure to security technologies including Incident Response, Microsoft Defender, Azure Sentinel.
• Knowledge of network fundamentals TCP/IP, SSL/TLS, DNS, DHCP.
• Hands on experience to Microsoft technologies like 365 ATP Defender, Endpoint Manager (Intune- conditional access/MDM/MAM) and KQL knowledge.
• Any vendor firewall and Remote Access solutions.
• Good to have – Cato Networks (VPN and Firewall), Azure Active Directory, Data leak prevention technologies.

Key Attributes

• High integrity
• Diligent
• Honesty
• Great communication
• Great Team Player

Competencies

• Good documentation skills
• Good written and spoken English is a must
• Excellent problem-solving skills
• Effective communication with business stakeholders
• Broad range of technical skills, with a focus on Security and Risk
• Must be willing to mentor other Team members to grow as a team.

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!

Not the right fit? Let us know you're interested in a future opportunity by clicking Introduce Yourself in the top-right corner of the page or create an account to set up email alerts as new job postings become available that meet your interest!