SecOps Analyst - Systems Implementation & Hardening

As a Mid-Level SecOps Analyst specializing in implementations, you will act as the security gatekeeper for our evolving technical ecosystem. You will partner directly with system administrators, network engineers, and software developers to ensure that every new computer, server, cloud asset, and application is securely configured, verified, and hardened against modern threat vectors before it reaches production.

Responsibilities:

• Work with network, infrastructure, cloud, endpoint, and identity teams to implement cybersecurity controls.
• Assist with the validation of configuration and effectiveness of security controls such as MFA, EDR, SIEM logging, firewalls, segmentation, vulnerability remediation, access controls, encryption, backups, and hardening baselines.
• Review technical designs, infrastructure changes, cloud deployments, and network implementations to identify cybersecurity risks before production deployment.
• Assist with the validation of security tools such as SIEM, EDR, vulnerability scanners, email security platforms, cloud security tools, and identity protection controls are properly implemented and reporting.
• Assist with the validation of firewall rules, network segmentation, VPN access, privileged access, exposed services, and cloud security configurations to identify excessive or risky access.
• Support cybersecurity improvement initiatives related to hardening, logging, monitoring, access control, segmentation, cloud security, and endpoint protection.
• Produce technical findings, remediation plans, posture reports, and implementation of validation reports.
• Act as the technical bridge between cybersecurity requirements and operational IT execution.

• Experience: 3–5 years of experience in cybersecurity, infrastructure security, network security, cloud security, security engineering, or technical IT operations, with hands-on involvement in implementing and validating security controls.
• Technical Expertise: Experience with SIEM, EDR/XDR, vulnerability management, cloud security, identity security, firewall platforms, and secure architecture design and implementation.
• Preferred Tools: Familiarity with one or more technologies including Elastic, QRadar, Wazuh, SentinelOne, CrowdStrike, AWS, Azure, Google Cloud, Microsoft Entra ID, Fortinet, Cisco, Intune, SCCM, and JAMF.
• Frameworks & Standards: Working knowledge of CIS Controls, CIS Benchmarks, NIST CSF, ISO 27001, and MITRE ATT&CK.
• Preferred certifications include CompTIA Security+, CySA+, Microsoft AZ-500/SC-300, AWS Security Specialty, Fortinet FCP/NSE, CCNA, CCSP, ZTCA, or SABSA Foundation (not mandatory).
• English proficiency at C1 level is required.