




Summary: Seeking an experienced IT Security professional with a strong background in security systems, vulnerability management, and SOC operations to enhance organizational security posture. Highlights: 1. Lead vulnerability management lifecycle with risk-based prioritization 2. Drive SOC build, use case tuning, and continuous maturity improvement 3. Hands-on expertise in SIEM, XDR/EDR, NDR, and cloud security monitoring * 8\+ of experience in IT Security Systems and Information Security. * **Education:** **Bachelor’s degree in Cybersecurity, Information Security, Computer science or related field.** * Certification: any one Mandatory * Tenable Certified Nessus Professional (TCNP) * Tenable Certified Security Center (TCSC) * Qualys Certified Specialist – Vulnerability Management (VMDR) * Qualys Certified Specialist – Web Application Scanning (WAS) **Preferred:** * CEH (Certified Ethical Hacker) * Microsoft Certified: Security Operations Analyst (SC\-200\) * OSCP (Offensive Security Certified Professional) **Skillset: Hands\-on expertise in SIEM, XDR/EDR, NDR, SOAR, vulnerability management, and cloud security monitoring.** Strong understanding of MITRE ATT\&CK, threat hunting, malware analysis, and log correlation. **Proven experience managing the full vulnerability management lifecycle with risk\-based prioritization.** Ability to translate technical findings into business risk and support risk assessments, control gap analysis, and risk treatment planning. **Experience in SOC build, use case tuning, automation, and continuous SOC maturity improvement.** Strong knowledge of security frameworks and regulatory requirements (e.g., ISO 27001, NIST CSF). **Excellent analytical, communication, reporting, and stakeholder management skills.** Vulnerability Management **Tenable, Qualys, Rapid7, Acunetix, Burp Suite Scanner** SIEM Management (log analysis, correlation rules, dashboards) **Alert Triage \& Incident Handling** Threat Detection \& Analysis **EDR/XDR Monitoring \& Investigation** Network Traffic Analysis (NDR, Firewall, IDS/IPS) **Malware Analysis (Basic static/dynamic analysis)** Basic Scripting (PowerShell / Python / KQL / SPL) **Cloud Security Monitoring (Azure/AWS/GCP)** Report Writing \& Incident Documentation Experience: * SOC: 5 years (Required) * SIEM: 5 years (Required) * MITRE ATT\&CK: 3 years (Required) Work Location: In person


