IT Security Operations yst - Oldendorff

Overview

Each year we as Oldendorff carry about 380 million tons of bulk and unitized cargo around the world. We perform 15000 port calls in 118 countries. On average we operate 700 chartered and owned ships at any one time. Being with us means working in a continuously changing internationally environment where reliability is appreciated as is team spirit. Combined with a healthy driver to keep seeking for areas to develop you and your company to reach higher goals we welcome you to set sail with us.

Technical skills:

• Experience in EDR Identity Protection Threat Management Vulnerability Management and SIEM solutions.
• Deep understanding of Microsoft Security Suite which includes Microsoft Defender for Cloud Microsoft Defender for Endpoint Microsoft Sentinel and Microsoft Endpoint Management.
• Capability to develop use cases or additional hunting and detection capabilities based on the SIEM query language.
• Strong knowledge in private public and hybrid cloud architecture networking workload types migration patterns and tools.
• Good understanding of cloud design patterns cloud operations and cloud cost models with handson ability to implement best practices or suggest improvements.
• Handson experience with enterprise compliance security and IT operations disciplines.

Qualifications:

• A bachelors degree in computer science computer engineering or a relevant field.
• 3 5 years of experience in a similar role.
• Adept at problemsolving with keen attention to detail
• Strong written and verbal communication abilities in English.
• Ability to suggest competitive and innovative technical plans and ideas.
• Microsoft Azure certifications are an additional advantage.
• Always curious to learn new things and develop own skills selflearner.

Essential Functions:

• You will be a member of the global IT Security Operations Team the main gateway for all worldwide IT detection systems (IDS) intrusion prevention systems (IPS) firewalls and SIEM (Security Information and Event Management) tools to detect and respond to security incidents. Investigate and analyse security events alerts and logs anomalous and misuse activities to identify potential security breaches determine the root cause scope of impact and extent of compromise and take appropriate actions to mitigate them and document findings to support incident response and remediation efforts.
• Incident Reporting and Metrics: Prepare and present regular reports on security incidents trends and metrics to management and relevant stakeholders. Provide insights and recommendations for improving the organizations security posture based on analysis of incident data.
• Threat Intelligence Analysis: Stay up to date with the latest security threats vulnerabilities and attack techniques by analysing threat intelligence reports security advisories and industry news. Assess the potential impact of emerging threats on the organizations cloud infrastructure and endpoints.
• Vulnerability Management: Conduct vulnerability assessments and penetration testing to identify weaknesses and vulnerabilities. Develop and implement remediation plans and coordinate with other teams to address identified vulnerabilities and ensure timely patching of systems.
• Security Operations Documentation: Maintain documentation of security processes procedures and guidelines. Develop and update incident response plans security playbooks and standard operating procedures (SOPs) to ensure effective and consistent security operations.
• Security Tools Administration: Manage and administer security tools and technologies such as SIEM endpoint protection systems data loss prevention (DLP) solutions and identity and access management (IAM) systems. Monitor health of the various log sources and external data sources. Configure and finetune security tools to optimize their performance and ensure accurate detection of security events.
• Security Policy and Compliance: Assist in the development implementation and enforcement of security policies standards and guidelines. Conduct configuration assessment against known benchmarks and ensure compliance with relevant industry regulations and IT Governance frameworks.