Information Security Specialist

We are seeking a dynamic and highly skilled Security Operations Expert to join our SOC team, responsible for the security monitoring and management systems. This role encompasses incident response, vulnerability management, and administration of critical security tools. The ideal candidate will also fine-tune detection rules to enhance the effectiveness of incident detection and response workflows.

Key Responsibilities :

1. Monitor and respond to security incidents in alignment with incident response protocols.
2. Conduct vulnerability assessments and manage remediation efforts.
3. Perform log analysis, host-based, and network forensic investigations to identify threats.
4. Administer and maintain security tools such as SOAR, SIEM, Anti-Virus, and similar platforms.
5. Fine-tune incident detection and alert-triggering rules to minimize false positives and improve detection accuracy.
6. Analyze and improve security measures by assessing and updating policies, configurations, and procedures.
7. Maintain situational awareness by tracking emerging threats, attack patterns, and tactics, techniques, and procedures (TTPs).
8. Develop comprehensive reports and presentations for both technical and non-technical audiences.
9. Contribute to the SOC's continuous improvement by refining workflows, automation, and system integrations.

Qualifications :

1. Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).
2. 5+ years of experience in security operations, incident response, threat detection and analysis, governance and compliance or similar.
3. Hands-on experience administering and configuring security tools such as FortiSOAR, FortiSIEM, FortiAnalyzer, FortiDeceptor, FortiGate and other Fortinet products. Understanding and building playbooks in SOAR in Json / Jinja experience is preferred.
4. Strong understanding of detection engineering, fine-tuning alerting rules, and managing SIEM / EDR and vulnerability management systems.
5. Proficiency in security frameworks and various compliance standards like ISO 27001, SOC, StateRAMP, FedRAMP, NIST, etc.
6. Familiarity with scripting (e.g., Python, PowerShell) for task automation and tool customization.
7. Strong analytical and troubleshooting skills for rapid issue resolution under pressure.
8. Excellent communication skills, both written and verbal, for technical and executive audiences.
9. Industry certifications such as CISSP, CISA, CRISC, CCSP, ISO 27001, or equivalent are highly preferred.