Experience range : 3 to 6yrs.

Job Description :

- 6+ years of hands-on experience with Microsoft Intune, Autopilot, and endpoint configuration.

- Strong knowledge of Azure security services and hybrid cloud security architecture.

- Proficient in utilizing Microsoft and Palo Alto security tools and implementing best practices in network and Infrastructure security.

- Hands-on expertise with enterprise SIEM and XDR platforms.

- Experience with firewall administration and application security technologies.

- Good understanding of industry frameworks (NIST CSF, ISO 27001, CIS Controls).

Security Operations & Monitoring :

- Monitor and triage security alerts and incidents generated by the Security Operations Center (SOC).

- Investigate and respond to XDR alerts (e.g., Microsoft Defender XDR), correlating signals across various data sources and threat vectors.

- Utilize Microsoft Sentinel for log analysis, threat detection, and orchestration of incident response.

Incident Response & Remediation :

- Assess and prioritize security incidents, coordinate remediation actions with relevant stakeholders for effective resolution.

- Conduct root cause analysis, post-incident reviews, and maintain documentation for continuous improvement.

Infrastructure & Application Security :

- Collaborate with infrastructure and application teams to embed security best practices across system and software lifecycles.

- Configure and maintain Azure Front Door and Web Application Firewall (WAF) rules in alignment with application security standards.

- Support security configurations for Microsoft Azure cloud services and hybrid networks.

Vulnerability Management :

- Analyze Qualys vulnerability reports and lead mitigation efforts with application and infrastructure teams.

- Ensure timely patching, configuration fixes, and validate risk closure processes.

Security Governance & Compliance :

- Enforce adherence to cybersecurity policies and controls; assist with audit readiness and compliance reporting (e.g., NIST, CIS, ISO standards).

- Participate in secure onboarding of new tools and technologies, ensuring regulatory and security alignment.

Network & Perimeter Security :

- Administer, design and support Palo Alto (cloud and on-premises) and Fortinet firewalls.

- Review and update security rule sets, NAT policies, VPN configurations, and threat prevention features.

- MDM Management and optimization of Intune.

Technical Environment / Tools :

- Firewalls: Palo Alto (on-prem and cloud), Fortinet.

- Cloud: Microsoft Azure (Security Center, Azure Front Door, WAF).

- SIEM/XDR: Microsoft Sentinel, Microsoft Defender XDR.

- Vulnerability Management: Qualys VMDR.

- Security Standards: NIST, CIS Benchmarks, ISO/IEC 27001.

Prefferd certification (if Any) :

- Microsoft Certified: Security Operations Analyst Associate (SC-200).

- Microsoft Certified: Azure Security Engineer Associate (AZ-500).

- Microsoft Certified: Cybersecurity Architect Expert (Sc-100).

Good to have skills :

- Basic Knowledge on Azure Infra ,M365 and Intune.