The candidate will be part of the information security operations team working in a 24x7 environment. The position requires interaction with various levels of management. Applicant must be a positive, flexible, self-starter requiring minimal supervision, and able to excel in a fast-paced environment. Communication skills are critical with the ability to verbalize and provide documentation to both technical and non-technical audiences. Applicants must be detail-oriented and have the ability to multi-task effectively.

Job Duties:

• Evaluate the security of Active Directory Infrastructure and Azure services against industry best practices.
• Be the technical escalation point for security concerns related to Microsoft Windows, Active Directory and Azure services.
• Conduct reviews and analysis of Microsoft Windows, Active Directory and Azure logs, to identify, contain, eradicate, and ensure recovery from incidents
• Act as forensic investigations subject matter expert
• Analyse firewall logs, network logs, and server logs and application logs to investigate events and incidents for anomalous activity
• respond to ongoing incidents, investigate historical compromises, and provide adept analysis and findings
• Work closely with the security team towards continuous improvement of security services
• Develop scripts, tools, and procedures to automate scans, assessments, and other monitoring and discovery activities.
• Deliver scheduled and ad-hoc reports
• Keep up to date knowledge of current vulnerabilities and security threats.
• Perform other duties as assigned