MSP Cybersecurity Support Technician - Tier 3

STACK Cybersecurity is a 20-year full-service Managed Service Provider (MSP) as well as a growing Managed Security Service Provider (MSSP) We are an IT consulting company that provides ongoing support and management of customer network environments, workstations, and servers with an emphasis on Cybersecurity first solutions.

We are currently seeking talented Cybersecurity/Technical Support professionals for a full-time position as an IT Cybersecurity Support Technician - Tier 3. The Tier 3 Technician is responsible for advanced technical support of desktop, Server and network environments along with advanced capabilities in Cybersecurity tactics such as Indicators of Compromise, Email Security and SIEM logging.

IT Support Technicians must be diligent self-starters, competent with computers and capable of managing multiple tasks and projects at the same time. Ideal candidates have excellent troubleshooting skills and the ability to effectively communicate with customers and interact with users who have little computer knowledge. Potential candidates must be able to maintain a professional attitude and appearance and confidently engage with customers over the phone and in person.

This is a full-time in-office position located in Livonia, Michigan 48150.

No remote worker candidates will be considered. Relocation is available for this position.

Responsibilities & Qualifications:

• Advanced Support relating to common technical issues involving Microsoft’s core business applications (MS Office, Word, Excel, Outlook, EntraID and Intune)
• Support of Backup Solutions and Processes
• Advanced Network Support - Layer 3 and above
• Applications support, including installing, configuring, migrating, and troubleshooting applications and third-party line of business applications
• Malware, spam, and antivirus support on desktops and remediation of Cybersecurity Indicator of Compromise support
• Strong communication skills when interacting with external clients: keeping them informed of incident progress, notifying them of impending changes or outages, and proactively interacting with clients before, during, and after service requests

Event Log Monitoring and Investigation:

• Monitor and investigate event logs for suspected activities.
• Identify potential security incidents and respond promptly.

Threat and Vulnerability Analysis:

• Conduct threat and vulnerability analysis to assess risks.
• Propose mitigation strategies based on findings.

Security Incident Handling:

• Investigate, document, and report any information security issues.
• Collaborate with relevant teams to address incidents effectively.

Understanding of Cyber Threats:

• Familiarity with prevalent cyber threats, including malware, phishing attacks, DDoS attacks, BEC, lay-and-wait, and man-in-the-middle attacks.
• Stay updated on evolving threat landscape.

SIEM Proficiency:

• Use and understand Security Information and Event Management (SIEM) solutions.
• Leverage SIEM data for threat detection and incident response.

Knowledge of Other Cybersecurity Tools:

• Familiarity with tools such as EDR (Endpoint Detection and Response), MDR (Managed Detection and Response), SASE (Secure Access Service Edge), intrusion prevention systems (IPS), and vulnerability scanners.

Problem-Solving Under Pressure:

• Apply problem-solving skills effectively even in high-pressure situations.
• Prioritize and address security incidents promptly.

Effective Communication:

• Present security findings and recommendations to senior leadership.
• Excellent written and verbal communication skills.

Attention to Detail and Organization:

• Strong attention to detail when analyzing security data.
• Organize findings and create comprehensive reports.

Independence and Teamwork:

• Work independently on security tasks.
• Collaborate effectively within a team environment.

REQUIRED EXPERIENCE:

• 2 years of Fluency with Switching and VLANs
• 2 years of Fluency with Microsoft Entra
• 2 years of Fluency with Microsoft Intune
• Experience managing vulnerabilities and Risk
• Experience with SIEM
• Experience with EDR and MDR solutions
• 2 years of Fluency in Conditional Access
• 2 years of Fluency with DNS and DNS Configuration
• 4 years of Fluency with Active Directory
• 2 years of Fluency with IPSEC and Firewalls
• Experience migrating premise resources to cloud
• Ability to prioritize and multitask
• Experience administering Hyper-V or another virtualization
• Deadline and detail-oriented
• Proficiency in English
• Excellent communication skills
• Requires on-time, present work ethic
• After-hours work may be required to accomplish tasks
• Weekend work may be required to accomplish tasks
• On-Call rotation participation will be required