Job Description
Summary:
The SecOps Engineer is responsible for supporting the development, implementation, and management of security policies, procedures, and protocols within the organization. This role involves monitoring security alerts, analyzing incidents to identify potential threats, conducting vulnerability assessments, and assisting with the investigation of security breaches. The SecOps Engineer will collaborate with IT and other departments to ensure adherence to security best practices while maintaining and managing security tools and technologies. The ideal candidate will have 3+ years of IT experience, a foundational understanding of cybersecurity principles, and experience working with security tools such as firewalls, Endpoint Detection and Response (EDR), Security Information and Event Management (SIEM), and Mobile Device Management (MDM).
Key Responsibilities:
- Security Monitoring & Incident Response: Monitor security alerts, events, and incidents, performing detailed analysis to identify and mitigate potential security threats.
- Vulnerability Assessment & Management: Assist with the identification and management of vulnerabilities in the organization’s infrastructure, ensuring regular assessments are performed to minimize security risks.
- Security Tools Management: Support the management, maintenance, and optimization of security tools, including firewalls, EDR, SIEM, and MDM systems.
- Policy Development & Implementation: Contribute to the development and enforcement of security policies, procedures, and protocols to ensure compliance with organizational and regulatory standards.
- Security Incident Investigation: Assist in investigating security breaches and incidents, providing detailed analysis and recommending corrective actions to prevent future occurrences.
- Collaboration & Best Practices: Work closely with IT, security, and other departments to ensure that security best practices are adhered to across the organization.
- Security Trend Monitoring: Stay current with the latest cybersecurity trends, vulnerabilities, and technologies, leveraging this knowledge to improve security posture and ensure proactive defenses.
- Reporting & Documentation: Maintain detailed records of security incidents, assessments, and responses. Regularly report on security status and compliance to internal stakeholders.
- Vendor Management & Compliance: Manage security and privacy processes related to the vendor management program, including collecting security and privacy questionnaires from vendors in compliance with ISO, SOC2, GDPR, and other standards.
- GRC Process Support: Collaborate with Governance, Risk, and Compliance (GRC) teams to ensure adherence to security standards (ISO 27001, SOC2, PCI) and support internal and external audits by providing necessary artifacts and documentation.
- Continuous Improvement: Identify areas for process improvement and assist in the enhancement of internal security processes, ensuring alignment with industry best practices.
