Department: Information Technology
Reports to: Cybersecurity Architect
Employment Type: Full-time
We are seeking a skilled Security Analyst with strong expertise in BitDefender, Intune and Proofpoint to join our Cybersecurity team. In this role, you will be responsible for monitoring, analyzing, and responding to security events and threats using these platforms. You will play a key role in protecting the organization’s endpoints, email infrastructure, and overall digital environment from cyber threats.
- Monitor security alerts and incidents in real-time using BitDefender GravityZone, MS Intune policy configuration and Proofpoint platforms.
- Investigate and triage security events generated by BitDefender endpoint protection, XDR, WCF, and ransomware protection modules.
- Analyze email security incidents in Proofpoint, including phishing attempts, malware attachments, URL threats, spam, and Business Email Compromise (BEC) attacks.
- Perform threat hunting and deep-dive investigations within BitDefender and Proofpoint consoles.
- Create, tune, and optimize detection rules, policies, and alerts in BitDefender, Intune and Proofpoint to reduce false positives and improve detection efficacy.
- Respond to security incidents following established playbooks, including containment, eradication, and recovery activities.
- Generate detailed incident reports and maintain documentation of security events and remediation actions.
- Collaborate with IT and business teams (such as Legal, Finance, Compliance, HR) to implement security best practices and remediate vulnerabilities.
- Contribute to continuous improvement of the Security Operations processes, tools, and playbooks.
- Stay current with emerging threats, new features in BitDefender, Intune and Proofpoint, and industry security trends.
- Report all incidents to the Cybersecurity Architect on a daily basis.
- Minimum 2 years of experience in Security Operations, SOC, Threat Monitoring, or similar.
- Strong hands-on experience with BitDefender GravityZone (Endpoint Security, XDR, Risk Analytics, Patch Management, and reporting).
- Strong hands-on experience with Proofpoint (Email Protection, Targeted Attack Protection, URL Defense, Email DLP, and Threat Response modules).
- Strong hands-on experience with MS Intune policy configuration/management.
- Solid understanding of endpoint security concepts, malware analysis, and email-borne threats.
- Experience with SIEM tools, incident response workflows, and ticketing systems.
- Ability to interpret logs, alerts, and dashboards from security tools effectively.
- Excellent analytical, problem-solving, and communication skills.
- Experience with other tools (e.g., Microsoft Entra, CrowdStrike, or similar).
- Familiarity with MITRE ATT&CK framework, CVE databases and threat intelligence.
- Scripting knowledge (PowerShell, Python) for automation of security tasks.
- Bilingual candidate preferred as user will be assisting LATAM/NAM primarily.
To apply: Please send your CV to [email protected].