Job Description

Responsible for developing security strategy plans and roadmaps based on cloud architecting best practices. Provide guidance and hands-on experience to the project teams in design, development, and maintenance of security solutions for cloud. Review new security technologies, help select third party suppliers, and create solutions to effectively mitigate security threats/risks. Provide security architect solutions, assist in risk mitigation, and fulfil security governance and best practices within the environment. Implemented and managed CrowdStrike Falcon next-generation endpoint protection, threat intelligence- an advanced persistent threat (APT), Device control and discover solution. Design and implement monitoring, blocking, and alerting strategies. Classified sensitive and regulated information data on-premises and in the cloud through CASB, Azure Information Protection (AIP) and from Varonis and Implement, configure, maintain, fine-tune & troubleshoot DLP solutions on CASB, Office 365 security and Compliance and Varonis. Configure, implement and maintain Microsoft 365 and Azure Defender, Defender for identity, Cloud App security, Azure Information Protection (AIP), Microsoft Endpoint Manager and Microsoft Defender Advanced Threat Protection, DLP and Intune. Implement and manage email encryption and rights protection capabilities in Office 365 Message Encryption. Implement Azure AD Multi-Factor Authentication through conditional access policies. Review and audit firewall rules, FTP requests, VPN requests and other non-standard software requests. Work with SIEM team monitoring notable events through Splunk ES and build custom use cases for the business needs. Detect insider threats and cyberattacks by analyzing data, account activity, and user behavior; prevents and limits disaster by locking down sensitive and stale data through Varonis. Serve as a primary point of contact for penetration tests conducted by a third party and initiate process to mitigate vulnerabilities for internal and public facing websites and Infrastructure. Manage Network Threat Monitoring to monitor network traffic. Recommended security patches and any other measures required in the event of a security breach. Integrated CIS Benchmarks and control and audited Microsoft baseline images. Review system access data and monitoring database activity.
Not Specified