Job Description
Key Responsibilities
• Oversight of the vulnerability management program to reduce threats of security breach by addressing critical security patches
• Oversight of the security operations and management of level 1 security alert triage activity
• Ensure all assets are properly reporting into the centralized security monitoring process
• Deliver a cross-functional incident management program, including incident response plans and procedures
• Conduct practice exercises and drills to ensure readiness to respond to security events
• Facilitate threat monitoring and intelligence gathering to proactively action
• Conduct regular security assessments and testing
• Oversight of Phishing, Malware and incident response playbooks
• Track operational metrics (mailbox, teams, etc)
• Monitor security alerts and events from SIEM, EDR/XDR, SOAR, cloud, and network security tools
• Investigate suspicious activity, anomalous behavior, and indicators of compromise (IOCs)
• Differentiate true positive incidents from false positives and tune detections accordingly
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
• 2–5+ years of experience in:
o Security operations, incident response, or SOC environments
o IT systems administration or network operations (for entry-level candidates)
• Strong understanding of networking concepts (TCP/IP, DNS, HTTP/S, SMTP)
• Experience with Windows and Linux operating systems
• Familiarity with identity and access management concepts (e.g., Active Directory, authentication, MFA)
• Familiarity with the incident response lifecycle and best practices
• Exposure and familiarity with EDR/XDR, email security, and endpoint protection tools
• Basic scripting or automation skills (Python, PowerShell, or Bash preferred)
• Familiarity with cloud platforms such as AWS, Azure, or GCP
• Strong analytical and problem-solving abilities
• Clear written and verbal communication skills
Strong attention to detail and documentation practices
• Clear written and verbal communication skills
Strong attention to detail and documentation practices
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.