Bachelor's degree in Computer Science, Information Systems, Cybersecurity, related technical field, or equivalent practical experience.
2 years of experience working with cyber defense teams in an operational environment such as SOC/CIRT, Cyber Threat Intelligence, or Blue Team.
2 years of experience in managing and maintaining EDR, NDR, or other incident response technologies.
2 years of experience with scripting.
2 years of experience in an Engineering, System Administrator, or related role.
Preferred qualifications:
Certification in one or more of the following: CompTIA Security+, CompTIA Network+; CISCO (CCNA); ISC2 (CISSP); SANS (GSEC, GCIH, GCED, GCFA, GCIA, GNFA, GPEN).
Experience administering or implementing any other security platform (web application firewall Multi-factor authentication (MFA), Privilege Access Management, Threat and Vulnerability Management (TVM) scanner, SIEM).
Knowledge in security controls for common platforms and devices, including Windows, Linux and network equipment.
Knowledge of scripting languages (PowerShell and Python).
Ability to simplify and communicate complex ideas.
Excellent written/verbal communication and people management skills.