Associate Cybersecurity Engineer SIEM (Security Info & Event Mgmt)

Job Description

Company: NextGen | GTA: A Kelly Telecom Company

Location: Cary, US

Familiarity in implementing, monitoring, and managing enterprise-grade firewall solutions, including next-generation firewalls (NGFW), to enforce network security policies and protect against advanced threats.

Proficient in monitoring and configuring Secure Access Service Edge (SASE) implementations, integrating security capabilities such as secure web gateways, zero trust network access (ZTNA), and cloud access security brokers (CASB).

Understanding of Identity and Access Management (IAM), understanding of centralized authentication, authorization, and privilege management systems to ensure secure access to resources and data, with a strong emphasis on least privilege principles.

Working knowledge of the Microsoft Security Suite, including Microsoft Defender for Endpoint, Microsoft Azure Sentinel, and Microsoft Entra/Azure Active Directory, with the ability to leverage these tools to detect, investigate, and respond to security threats across on-premises and cloud environments.

Experience in developing technical and tactical procedures, policies, and processes aligned with industry’s best practices and regulatory requirements, with a focus on continuous improvement and risk mitigation.

Strong analytical and problem-solving skills, with the ability to recommend remediation measures to enhance overall security posture.

Excellent communication and collaboration skills, with the ability to effectively interact with cross-functional teams, senior management, and external stakeholders to convey complex security concepts, influence decision-making, and drive security initiatives forward.

Other duties as assigned.

What You Need to Succeed (Qualifications & Experience Education)

3+ years of cloud security engineering, network security engineering, security operations, insider risk management, or security event management experience highly desired.

Working knowledge with Identity, Firewall, Cloud, and SIEM tools (e.g., Microsoft Azure, Okta, Duo, Palo Alto, Fortinet, Zscaler, Windows Defender, OCI, Sentinel).

Strong ability to convey complex information risk and security issues in a manner that is easily understood and actionable and constructively challenges prevailing thoughts and processes.

Good judgment, urgency, ethical standards, regulatory compliance, customer service, and business integrity.

Proficiency with automation tools or scripting (e.g., Ansible, Python, KQL, PowerShell) preferred.

Strong written and oral communication skills, including the ability to present ideas and suggestions clearly to work cross functionally with network, cloud, infrastructure, and application teams to support secure implementations and operational excellence.

Ability to work with different functional groups and levels of employees to effectively and professionally achieve results.

Strong organizational skills: ability to accomplish multiple tasks within the agreed upon timeframes through effective prioritization of duties and functions in a fast-paced environment.

Approximately 5% of travel may be required in support of the position’s responsibilities

Source: LinkedIn