environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, Cribl, EDR (e.g., Defender for Endpoint), VMDR (e.g., Qualys), and other OT/IT systems into Sentinel. Custom Analytics & Detection Rules Develop, and fine-tune KQL-based analytics rules tailored to OT threat scenarios, ensuring high-fidelity alerts and More ❯
london (city of london), south east england, united kingdom
HCLTech
environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, Cribl, EDR (e.g., Defender for Endpoint), VMDR (e.g., Qualys), and other OT/IT systems into Sentinel. Custom Analytics & Detection Rules Develop, and fine-tune KQL-based analytics rules tailored to OT threat scenarios, ensuring high-fidelity alerts and More ❯
enhance security visibility and automation. Manage identity, directory, and MDM services using JumpCloud, ensuring secure and efficient user and device management. Perform regular vulnerability assessments and risk analyses with Qualys to identify and mitigate potential security gaps. Collaborate closely with the SecOps team and cross-functional IT groups to maintain secure system configurations and improve security posture. Stay up to … authentication techniques to prevent phishing attacks. Practical experience conducting process analysis on both Windows and macOS systems to identify potential security risks. Strong understanding of vulnerability management practices, with Qualys experience highly preferred. Proven ability to handle escalated security tickets efficiently and effectively. Desirable Experience Exposure to businesses operating outside of the traditional Microsoft ecosystem. Background in professional or regulated More ❯
