The Cyber Security Cloud Engineer will conduct comprehensive investigations and incident response activities across various cloud and on-premises security platforms. This role emphasizes working with Microsoft 365, Palo Alto Networks, Zscaler, Active Directory, and Intune. The ideal candidate should possess a strong technical background and hands-on experience with these tools, demonstrating the ability to identify, analyze, and mitigate security threats.
The company is located in Philadelphia, PA and will remain 100% remote.
What You Will Be Doing

• Investigate Security Incidents
• Conduct In-Depth Investigations: Investigate security incidents across Microsoft 365, Palo Alto Networks, Zscaler, Active Directory, and Intune.
• Analyze Logs and Alerts: Identify potential threats by analyzing logs and alerts from various security tools.
• Perform Root Cause Analysis: Determine the origin and scope of incidents through thorough root cause analysis.
• Incident Response
• Develop and Execute Plans: Create and implement incident response plans for cloud and on-premises environments.
• Coordinate Responses: Collaborate with internal teams and external partners to respond to and remediate security incidents.
• Document Activities: Document and report on incident response activities and outcomes.
• Monitoring and Analysis
• Monitor Dashboards and Alerts: Oversee security dashboards and alerts from M365 Security Center, Palo Alto Networks Panorama, Zscaler Central, and Intune.
• Utilize SIEM Tools: Aggregate and analyze security events and logs using SIEM tools.
• Conduct Regular Audits: Perform regular security compliance audits of Active Directory.
• Threat Hunting
• Search for Threats and Vulnerabilities: Proactively hunt for threats and vulnerabilities within cloud and on-premise environments.
• Evaluate Vulnerability Exposure: Work with threat hunters to assess the exposure of Core to reported vulnerabilities.
• Develop Threat Hunting Strategies: Implement threat hunting strategies using available tools and intelligence.
• Security Best Practices
• Adhere to Best Practices: Ensure cloud and on-premise security configurations follow best practices and organizational policies.
• Implement Recommendations: Work with company leadership on regular health checks and integrate recommendations into practice.

Required Skills & Experience:

• The candidate needs to have extensive experience working with Azure, Palo Alto and Zscaler.

Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn’t provide sponsorship.
Posted By: Ashton Corbett