Job Summary

As a Security Consultant, you will play a vital role in enhancing the security posture of our clients' Microsoft technology infrastructure. Your primary responsibility will be the management, maintenance, and tuning of Azure Sentinel, Microsoft 365 Defender and Microsoft Defender for Cloud (Azure Security Center), to ensure optimal performance and security alert effectiveness. Additionally, you will help optimize how the client Microsoft security suite interacts with corresponding security technologies (SOAR, Ticketing, Networking, etc)

Leveraging your expertise in Microsoft technologies, you will work to identify and mitigate potential security risks, providing a robust, reliable, and effective security solution. Your role will involve close collaboration with clients and internal teams to understand specific security needs and tailor the Microsoft environment accordingly.

Furthermore, you will contribute to the development of security policies and procedures, staying updated with the latest cybersecurity threats, and mitigation techniques. Your commitment to maintaining high cybersecurity standards and your ability to adapt to evolving security landscapes will be critical to your success in this role.

This role will report to the Practice Manager of Security Engineering within Stratascale.

This position will report to Charlotte, NC on a hybrid work schedule as determined by Stratascale management.

About Us

As a digital and cybersecurity services company, Stratascale exists to help the Fortune 1000 transform the way they use technology to advance the business, generate revenue, and respond quickly to market demands. We call it Digital Agility.

To learn more about how we’re shaping the future of digital business and a more secure world, visit stratascale.com.

Responsibilities

Includes, but not limited to:

• Manage and maintain Microsoft Azure security technologies to ensure optimal performance and reliability. This includes performing regular system checks, updates, and upgrades.
• Regularly tune Microsoft Azure cloud infrastructure for optimal performance based on customer feedback and best practices.
• Proactively use Microsoft Azure security tools for threat hunting, identifying potential vulnerabilities or threats before they impact the system. This involves staying ahead of emerging cybersecurity trends and adapting system configurations accordingly.
• Utilize Azure Sentinel and Defender to detect and respond to security incidents.
• Analyze security alerts and data, investigating potential security threats, and taking appropriate action to mitigate risks.
• Contribute to the development of security policies and procedures based on insights gained from the SIEM system. Ensure these policies and procedures align with the latest cybersecurity best practices.
• Generate comprehensive reports detailing security incidents, system performance, and ongoing activities. Use these reports to inform decision-making and demonstrate the value of the SIEM system.
• Work closely with clients to understand their specific security needs.
• Customize the SIEM and Azure Security system accordingly to provide tailored security solutions.
• Leverage Microsoft 365 Defender, Azure Security Center, and other Azure security tools to establish comprehensive security controls and threat detection capabilities.
• Collaborate with other IT and security professionals within the organization to ensure a coordinated and effective approach to network security.
• Stay updated on the latest cybersecurity threats, mitigation techniques, and Azure technologies. Use this knowledge to enhance system performance and security.
• Provide training and mentorship to other team members on the effective use of Azure technologies. Share knowledge and insights to foster a culture of continuous learning and improvement within the team.
• Provide off-hours support for SIEM platforms – as assigned.

Qualifications

• 3-5 years of experience in managing Security Information and Event Management (SIEM) systems. Practical experience in system tuning, threat detection, and incident response is also crucial.
• Proficiency in SIEM technologies and tools, network protocols, and cybersecurity principles. Familiarity with various operating systems and database platforms.
• Strong problem-solving capabilities with the ability to analyze complex data, identify patterns, and develop strategic solutions.
• Proficient with M365Defender, Azure Policy, Microsoft Defender for Cloud, Entra-ID and other built in security control to enhance client’s security.
• Excellent verbal and written communication skills, with the ability to effectively explain technical concepts to non-technical individuals and communicate with clients.
• Experience managing and reporting on multiple service delivery opportunities and ongoing projects.
• Strong fundamental understanding of technical security solutions and how they address customer risk exposure and solve key use cases.
• Proven understanding of security services engagements, service team management
• Participate in the development of cross practice training or delegate trainings to team members on practice discipline capability, associated offerings, industry positioning and selling strategies.

Required Skills

• Ability to work effectively, add value as a team member for the practice discipline.
• Ability to train and disseminate information within an area or operation and work effectively within all levels of an organization, both internally and externally
• Ability to engage and discuss technical and non-technical concepts with a wide array of customer audience types including C-Suite, VP/Director, Architect, Engineer and Analyst resources.
• Emotional intelligence, flexible work style, and excellent diplomatic skills across all levels of the organization
• Attention to detail, organization, and follow up skills are critical.
• Initiative to research and resolve problems with a positive attitude.
• Ability to mentor and guide others.

Certifications Required

Certifications below are preferred but not required:

• Industry certifications:
  • CIAM
  • CISM / CISA / CRISC
  • GIAC (GSEC)
• Vendor Solutions and product specific certifications or experience (or equivalent):
  • Sentinel/Splunk/Log Rhythm
  • Azure and AWS Security Experience
  • Any MDR/MSSP security engineering experience

Unique Requirements

• Attend virtual customer meetings when appropriate
• Travel to customer sites, partner sites, conferences, and Stratascale offices up to 25% annually

Additional Information

• The estimated annual pay range for this position is $110,000 - $145,000 which includes a base salary and bonus. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.
• Equal Employment Opportunity – M/F/Disability/Protected Veteran Status

Compensation Structure

Approved Min (Total Target Comp)

Approved Max (Total Target Comp)

Job Wrapping 1