Cybersecurity/SOC and NOC Engineer

Posted 3 weeks ago

Worldwide

Summary

Summary This is a client-facing role. As the SOC Engineer lead, you must be able to speak and write in fluent English. You will be responsible for the comprehensive management of cybersecurity services across all customer accounts. Including the following: Security Assessments & Compliance: • Full lifecycle management of penetration testing, including coordination, execution (using (link removed)/ automated tools), and remediation of findings. • Performing risk assessments for both existing and new customer environments: o Microsoft 365, Azure, Google Workspace, Meraki Firewalls and Sentinel One. • Providing expert recommendations aligned with NIST frameworks and Zero Trust principles. Policy & Compliance: • Drafting, updating and providing guidance to customers on critical IT policies based on their enviorement, such as Information Security Programs (ISP), Business Continuity Plans (BCP), and Incident Response Policies following NIST and Zero Trust pricipals. • Our clients are financial institutions so you must also learn and understand (SEC) Security Exchange Commission IT and Cybersecurity Guidelines Security Operations & Incident Response: • Serving as the initial point of contact and escalation for all cybersecurity incidents, both internal to OOT and for our customers. • Leading Security Operations Center activities, including the routine analysis of vulnerability data from Wazuh across the customer base. • Collaborating with infrastructure and helpdesk teams to ensure the timely patching, fixing, and mitigation of identified vulnerabilities. • Managing and taking full responsibility for the SOC helpdesk queue to address phishing emails, and cybersecurity tickets that come in from clients. Security Awareness & Training: • Planning and executing quarterly customer-wide phishing simulation campaigns utilizing the KnowBe4 platform. • Identifying flagged users from phishing campaigns and coordinating training for end-users. • Conducting live video cybersecurity awareness training sessions for customer users on an annual or bi-annual basis. Security Technology Management: • Implementing and managing a range of cybersecurity solutions for our customers. • Platforms include (but are not limited to): Microsoft 365/Azure/Sharepoint (security configurations, conditional access policies, etc..), Mimecast, Cisco Umbrella, Proofpoint, CrowdStrike (potential move to SentinelOne), KnowBe4, and Duo Security. • Full lifecycle, rollout and implementation of our cybersecurity stack for clients which include: Duo Security, Mimecast, Proofpoint, Knowbe4, Cisco Umbrella, and others. Cloud & SaaS Security Management: • Managing and configuring security settings and policies within Microsoft 365 and Entra ID (formerly Azure Active Directory), specifically including the administration of Conditional Access Policies. • Overseeing and enhancing the security posture of customer environments within Google Workspace. Skills & Knowledge Required: • Strong Communication Skills: Fluent in both written and spoken English, capable of interacting with clients and stakeholders/executives effectively. • Cybersecurity Expertise: In-depth knowledge of penetration testing, risk assessments, vulnerability management, and compliance frameworks such as NIST and Zero Trust. • Experience with Key Security Platforms: o Microsoft 365, Azure, SharePoint, and Entra ID (Azure AD) o Mimecast, Proofpoint, Cisco Umbrella, KnowBe4, Wazuh, CrowdStrike, and SentinelOne. o Meraki Firewalls and other network security solutions. • Incident Response: Experience leading security operations and managing incident response efforts. • Phishing and Security Awareness: Proficiency in using KnowBe4 for phishing simulations and user training. • Cloud Security Management: Experience with managing security settings in cloud environments, particularly Microsoft 365 and Google Workspace. Preferred Certifications: • CISSP, CISM, or other relevant cybersecurity certifications. • Certifications in cloud security, such as Microsoft Certified: Azure Security Engineer Associate or Google Cloud Security Professional. Available Working Schedules: 5pm to 12am EST 12am to 8am EST

  • More than 30 hrs/week
    Hourly
  • 3-6 months
    Duration
  • Expert
    Experience Level
  • $25.00

    -

    $45.00

    Hourly
  • Remote Job
  • Ongoing project
    Project Type

Contract-to-hire opportunity

This lets talent know that this job could become full time.
Learn more
Skills and Expertise
Mandatory skills
Firewall
Information Security
Activity on this job
  • Proposals:20 to 50
  • Last viewed by client:3 weeks ago
  • Interviewing:
    0
  • Invites sent:
    0
  • Unanswered invites:
    0
About the client
Member since Sep 27, 2015
  • United States
    Boston10:19 AM
  • $8.6K total spent
    12 hires, 2 active
  • 197 hours

Explore similar jobs on Upwork

1099 Independent ContractorHourly‐ Posted 2 weeks ago
CompTIA
Network and Cloud EngineerHourly‐ Posted 1 week ago
Network Security
Virtual LAN
Firewall

How it works

  • Post a job icon
    Create your free profile
    Highlight your skills and experience, show your portfolio, and set your ideal pay rate.
  • Talent comes to you icon
    Work the way you want
    Apply for jobs, create easy-to-by projects, or access exclusive opportunities that come to you.
  • Payment simplified icon
    Get paid securely
    From contract to payment, we help you work safely and get paid securely.
Want to get started? Create a profile

About Upwork

  • Rating is 4.9 out of 5.
    4.9/5
    (Average rating of clients by professionals)
  • G2 2021
    #1 freelance platform
  • 49,000+
    Signed contract every week
  • $2.3B
    Freelancers earned on Upwork in 2020

Find the best freelance jobs

Growing your career is as easy as creating a free profile and finding work like this that fits your skills.

Trusted by

  • Microsoft Logo
  • Airbnb Logo
  • Bissell Logo
  • GoDaddy Logo