IT Support Technician - Tier 3

STACK Cybersecurity is a full-service Managed Security Service Provider (MSSP) as well as an established Managed Services Provider (MSP) We are an IT consulting company that provides ongoing support and management of customer network environments, workstations, and servers with an emphasis on Cybersecurity first solutions.

We are currently seeking talented Cybersecurity/Technical Support professionals for a full-time position as an IT Cybersecurity Support Technician - Tier 3. The Tier 3 Technician is responsible for advanced technical support of desktop, Server and network environments along with advanced capabilities in Cybersecurity tactics such as Indicators of Compromise, Email Security and SIEM logging.

IT Support Technicians must be diligent self-starters, competent with computers and capable of managing multiple tasks and projects at the same time. Ideal candidates have excellent troubleshooting skills and the ability to effectively communicate with customers and interact with users who have little computer knowledge. Potential candidates must be able to maintain a professional attitude and appearance and confidently engage with customers over the phone and in person.

This is an in-office position located in Livonia, Michigan 48150.

No remote only candidates will be considered. Relocation is not available for this position.

Responsibilities & Qualifications:

• Advanced Support relating to common technical issues involving Microsoft’s core business applications (MS Office, Word, Excel, Outlook)
• Support of Backup Solutions and Processes
• Advanced Network Support - Layer 3 and above
• Applications support, including installing, configuring, migrating, and troubleshooting applications and third-party line of business applications
• Malware, spam, and antivirus support on desktops and remediation of Cybersecurity Indicator of Compromise support
• Strong communication skills when interacting with external clients: keeping them informed of incident progress, notifying them of impending changes or outages, and proactively interacting with clients before, during, and after service requests

Event Log Monitoring and Investigation:

• Monitor and investigate event logs for suspected activities.
• Identify potential security incidents and respond promptly.

Threat and Vulnerability Analysis:

• Conduct threat and vulnerability analysis to assess risks.
• Propose mitigation strategies based on findings.

Security Incident Handling:

• Investigate, document, and report any information security issues.
• Collaborate with relevant teams to address incidents effectively.

Understanding of Cyber Threats:

• Familiarity with prevalent cyber threats, including malware, phishing attacks, DDoS attacks, BEC, lay-and-wait, and man-in-the-middle attacks.
• Stay updated on evolving threat landscape.

SIEM Proficiency:

• Use and understand Security Information and Event Management (SIEM) solutions.
• Leverage SIEM data for threat detection and incident response.

Knowledge of Other Cybersecurity Tools:

• Familiarity with tools such as EDR (Endpoint Detection and Response), MXDR (Managed XDR), SASE (Secure Access Service Edge), intrusion detection systems (IDS), and vulnerability scanners.

Problem-Solving Under Pressure:

• Apply problem-solving skills effectively even in high-pressure situations.
• Prioritize and address security incidents promptly.

Effective Communication:

• Present security findings and recommendations to senior leadership.
• Excellent written and verbal communication skills.

Attention to Detail and Organization:

• Strong attention to detail when analyzing security data.
• Organize findings and create comprehensive reports.

Independence and Teamwork:

• Work independently on security tasks.
• Collaborate effectively within a team environment.

REQUIRED EXPERIENCE:

• Strong troubleshooting and critical thinking skills
• Knowledge of firewalls, switches, and routing
• 4 years of Fluency with NAT, SNAT, PAT, and VLANs
• 4 years of Fluency with Microsoft Entra
• 4 years of Fluency with Microsoft Intune
• 4 years of Experience with SSO
• Experience with Patching solutions
• Experience managing vulnerabilities and Risk
• Experience with software deployment
• Experience with SIEM
• Experience with SASE
• Experience with EDR solutions
• Knowledge of MDR, XDR, MXDR
• 4 years of Fluency in Conditional Access
• 4 years of Fluency with DNS and DNS Configuration
• 7 years of Fluency with Active Directory
• CSP and Lighthouse experience preferred
• 2 years of Fluency with PIM
• Experience with cloud platforms (AWS, Azure, Ubiquiti, etc.)
• Experience with SAML AUTH
• 7 years of Fluency with IPSEC and SSL VPN
• Experience migrating to Exchange Online
• Experience migrating premise resources to cloud
• Experience observing and suggesting solutions to meet organization goals
• Ability to diagnose and resolve technical issues
• Ability to prioritize and multitask
• Experience administering Hyper-V and VMware
• Deadline and detail-oriented
• Proficiency in English
• Excellent communication skills
• Customer-oriented and cool-tempered