Proficio is an award-winning managed detection and response (MDR) services provider. We provide 24/7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries. Take a video tour of our global network of 24/7 Security Operations Centers (SOCs).
Proficio has been highlighted in Gartner’s Market Guide for Managed Detection and Response Services for the last five consecutive years. MSSP Alert ranks Proficio among the top 250 global Managed Security Services Providers (MSSPs).
We have a track record of innovation. Proficio invented the concept of SOC-as-a-Service. We were the first MSSP to provide automated response services and are the only company in our space with a patent for cyber risk scoring and security posture gap analysis.
Our typical client is a medium to large-sized organization that lacks the in-house resources to address the challenges of a rapidly changing threat landscape. The difficulty of hiring and retaining cybersecurity professionals are widely understood. Our prospective clients are also challenged to effectively harness technology and build hardened processes that reduce the risk of security breaches.
While Proficio has developed a unified service delivery platform designed to meet the needs of the most demanding clients, what sets us apart is the quality and passion of our people. We believe the SOC of the Future will meld the creativity of human intelligence with the power of advanced technologies like AI.
Proficio’s commitment to developing and promoting our team members is unparalleled in our industry. Most of our senior managers were promoted from within.
SUMMARY
We’re looking for a SIEM engineer to join our fast-growing Microsoft Sentinel team.
Microsoft Sentinel is a next-gen SIEM (Security Information and Event Management), re-invented to leverage cutting edge cloud technology, big data, machine learning and AI to help organizations with their security operations. Our mission is to empower the SOC engineer’s and analytics teams with cutting edge technology.
This position is a unique opportunity to help drive the growth of Proficio’s Microsoft Sentinel business, one of the most exciting security products in the cyber security space, from the ground up.
This role will also serve as a Cybersecurity Advisor responsible for assisting US based Sentinel clients in all stages of the relationship. Advisors are positioned as trusted security resources, service specialists, and liaisons between the client and Proficio service delivery teams. Security advisors focus on two key areas:
1. They work closely with the service delivery teams to ensure successful implementation, deployment, and ongoing service.
2. They serve as client-facing technical resources, providing guidance in various security-related areas including network monitoring, security policy, risk assessment, gap analyses, and more.
RESPONSIBILITIES
- The Microsoft Sentinel Services Engineer will work to support our team in the following areas:
- Production support: Handling multiple customers as first point of contact, the Associate Microsoft Sentinel Services Engineer will handle tier 1 production support issues such as password assignment / reset, handling first level triage of log ingestion outages, and working to tune/filter content per customer needs.
- Onboarding: Working under the direction of the VP, the Engineer will following onboarding task lists for setting up new customers, creating infrastructure for each customer instance, and uploading currently Analytics content.
- Building the service: We are continually enhancing and building out our Sentinel service offering. This role will assist in the development of the service by following instruction plans developed by Principal or Lead engineers for projects related to system enhancements and/or changes. In addition, this role will follow our playbook for any system upgrades or general platform maintenance work.
- A Security Advisor is a SME (subject matter expert) in our Proficio Sentinel Service. They take point on customer discussions and tickets specific to their area of specialization, and expand past troubleshooting to consultation and architecture level discussions.
- Build customer loyalty by being a trusted adviser/ Partner with the client and provide problem resolutions, advice, proposals, technical presentations, and other customer communications
- Periodic checkpoints and review to help clients stay ahead of potential challenges and help optimize their existing environment
- Develop relationships with key business and IT stakeholders and become an expert on a customer’s implementation by understanding their top business goals and priorities.
- Help customers achieve their business goals and outcomes by providing timely, proactive recommendations that will benefits customers’ ongoing usage of Proficio’s Sentinel Service
- Utilizing technical expertise, recommend SIEM use cases, tuning, reports and operational procedure to ensure that clients are getting the most value possible from their services
- Provide "industry expert" knowledge utilizing meaningful data to drive further account development
- Effectively communicate technical aspects of Proficio service offerings and best security practices to clients
- Provide regular analysis and recommendations on the successful planning and support of Proficio’s Sentinel service
- Ensure security, availability, and confidentiality of all sensitive data collected, processed, or stored by this position
- Manage quarterly or monthly virtual meetings with assigned US-based Sentinel customers:
- Collaborate with the Global Manager to help train the Security Advisor team on Sentinel
- Ensure all new Microsoft Sentinel customers are transitioned smoothly to the Security Advisor team for ongoing support.
- 3+ years SOC and SIEM experience including exposure to both front and back end SIEM functionality
- 2+ years customer facing work
- 3+ years work in the cyber industry in a technical role (analyst or engineering focused)
- Strong ability to problem solve, communicate (written and verbal), follow written instructions to completion, and to troubleshoot unexpected errors.
- Microsoft (Azure and/or Security) certifications are a plus; CompTia Sec+ is required
- Strong knowledge of network security infrastructure architecture and products (SIEM, Firewall, IDS/IPS, endpoint, etc.)
- Sentinel SIEM content development experience
- Technical Cyber Security related certifications preferred (CISM, Security+, CISSP, ect)
- Previous experience working for a managed services organization
- Exceptional communication skills suitable for technical and C-level executives
- Ability to articulate technical issues and product line both internally and externally
- Adaptable team player with strong critical thinking skills
- Self-motivated, detail-oriented, independent, and strong self-study habits
- Customer lifecycle management experience from inception through all lifecycle stages
- Collaborative and team-oriented attitude
- Takes initiative and approaches all tasks and projects proactively
- Salary range DOE: level I $85K+; level II$105K+; level III $125K+
- Peer training and mentoring with upward mobility
- Health, Dental and Vision plans available first of the month and other benefits available from day 1
- 401K plan
- Gym reimbursement
- Employee Assistance Program
- Life and Voluntary Life Insurance programs
- A culture that is flat enough for you to have a “seat at the table”, but layered enough to provide you with mentoring and support
- A place to work where security is considered a “team sport” – we work together to identify and stop cyber attacks
Proficio is an EOE Employer
Proficio collects certain personal information upon your submission of an application for an open position. More information is available about your consumer rights and our privacy policy at www.proficio.com/privacypolicy