Security Operations Engineer with Email Security experience 100% Remote

Hope you are doing well

Please find the job description given below and let me know your interest.

Position: Security Operations Engineer
Location: 100% Remote
Duration: 6+ Months

Job Description

We are seeking Tier 1 Security Operations Engineer for a remote contract position. The ideal candidate would have at least 5 years of overall IT experience and 3 years of Security Operations experience. The selected candidate will act as the front-line for security events triaging and will be responsible for day-to-day security operations, including incident response, triage, and monitoring. Proficiency in using Microsoft Defender Suite, EDR/XDR tools, and Sumo Logic is essential. To protect organizational assets, a strong understanding of phishing emails, email security, and threat mitigation is required.

Responsibilities:

Security Monitoring and Triage:

Monitor security alerts and events using EDR/XDR tools, Microsoft Defender Suite, and Sumo Logic.

Analyze and prioritize security incidents to determine their urgency and impact.

Incident Response:

Receive tickets and perform initial incident response, containment, and mitigation for detected security threats.

Escalate complex incidents to Tier 2 or Tier 3 teams as necessary.

Email Security:

Analyze phishing emails and other email-based threats, providing timely response and remediation.

Manage and enhance email security tools to prevent and detect malicious activities.

Vulnerability Management:

Conduct vulnerability assessments using Tenable and assist in remediation efforts.

Collaborate with IT teams to address identified vulnerabilities promptly.

Threat Intelligence:

Stay updated on the latest security threats, vulnerabilities, and attack trends.

Provide actionable insights and recommendations to improve the security posture.

Documentation and Reporting:

Maintain detailed documentation of security incidents, investigation findings, and remediation efforts.

Generate periodic reports on security metrics and incident trends.

After-hours support:

Respond to critical security alerts after-hours as needed.

Qualifications:

5 years of overall IT experience, with at least 3 years in a security-focused role.

Hands-on experience with Microsoft Defender Suite, EDR/XDR solutions, and Sumo Logic (or similar).

Strong understanding of phishing attacks and email security practices using tools like Darktrace or similar.

Understanding of networking protocols, firewall configurations, and common attack methods.

Experience with Tenable for vulnerability management would be a plus.

Please share your updated resume and suggest the best number & time to connect with you

,