Security Specialist

Overview

A Security Specialist is a client-focused position that works with Pro Arch customers to maintain a comprehensive security program. Security Specialists will leverage Pro Arch's security tools to detect and prevent cyber threats to Pro Arch's customers. Additionally, responsibilities include implementation, monitoring security controls, and incident response. The Security Specialist will be part of a select group of industry-recognized experts who work on unique security solutions associated with next-generation technologies and emerging security threats.

Ongoing training and professional certifications are part of the job requirements.

• Initial setup and deployment of security solutions and operational technology security measures
• Creating and delivering detailed reports and maintaining technical documentation
• Conducting security training sessions and assessments to enhance security awareness and identify vulnerabilities
• Provide expert advice, guidance, and ad-hoc consulting services to address specific security needs
• Ongoing configuration, maintenance, and management of security solutions and systems
• Delivering presentations, conducting proof-of-concepts, and engaging with the public through various platforms
• Focuses on enhancing and optimizing security programs and processes
• Implementation & Management of Microsoft Security Solutions, Security Information & Event Management (SIEM), and Extended Detection & Response (XDR) security architecture
• Solution research & design, emerging technology evaluation
• Solution configuration management
• Ticket Queue management and supporting customers through ticket ownership
• Account & permission management, provisioning, governance for security solutions
• Microsoft or other 3rd party vendor Security workshops
• Incident Response investigation, writing, delivery, as appropriate

• Outstanding Written, Verbal, Technical, Non-Technical, communication & presentation skills
• Self-directed with the ability to prioritize and handle multiple tasks concurrently, and of high quality
• Proven collaborator. Experience in mentoring and guiding a highly technical team
• Eager learner continually improving skill sets, earning certifications, and gaining industry knowledge
• Skilled in leading a conversation with client to drive security strategy and program improvement
• Exceptional analytical skills
• A well-understood English dialect is a must
• Ability to prioritize effectively and handle shifting priorities professionally
• Produce and review reports to support project deliverables
• Ongoing training and professional certifications are part of the job requirements
• Create clearly stated remediation recommendations based on industry best practice
• Successfully interface with clients, both internally and externally
• Document and explain technical details in concise and clear manner
• Manage personal schedule and project tasks
• Provide weekly time accounting and monthly expense reports
• Travel within upstate NY and occasionally out of state, as required

• Candidate should have a minimum of 2 years of experience in cybersecurity with additional background in Security Consulting. To be successful, this position will require the candidate to have expertise in the following areas:
• Familiarity with Security Information and Event Management (SIEM) systems, particularly Microsoft Sentinel and Extended Detection & Response (XDR) solutions, such as Microsoft Defender XDR
• Familiarity with how SOAR (Security Orchestration and Automated Response) works and ability to provide workflows which can be used for automating SOC responses
• Incident Handling, take technical investigation ownership of incidents and coordinate response efforts
• Industry knowledge and experience in Managed Detection and Response (MDR) technologies
• Deep experience in advanced Microsoft Cloud Security implementation, advisory, and assessment
• Microsoft Security and Compliance including:
• Defender for Endpoint
• Defender for Office 365
• Defender for Identity
• Defender for Cloud Apps
• Defender for Cloud
• Defender XDR
• Defender for IoT
• Entra  Protection
• Entra  & Intune
• Microsoft Sentinel
• Microsoft Purview, IRM, DLP, Insider Risk
• Experience with Crowd Strike Endpoint, Identity, XDR is highly desirable
• Vulnerability Management tools, such as Qualys
• Security Awareness Training using tools such as Know Be4
• Experience in analyzing and creating remediation strategies for vulnerability management programs, security architecture reviews, cloud security reviews in a Managed Security Services Model
• Implement and maintain security solutions, tools, and IT Policies and standards
• Experience with major Identity Provider and related security solutions, such as Microsoft Entra , Identity Protection, Active Directory, Defender for Identity
• Demonstratable knowledge in Microsoft and other vendor-based licensing
• Experience in Policy and Device Management solution like MEM, Intune, Azure Arc, GPO
• Experience with Azure Dev Ops is desirable
• Advanced knowledge of Kusto Query Language (KQL). Splunk…