Job Summary
We are hiring an Information Security Operations Specialist to run the day-to-day operations of our corporate security controls across identity, endpoint, and data protection. This role is execution-focused and works closely with IT and Security Engineering to ensure secure and compliant operations in a regulated financial environment.
Key Responsibilities
1) Identity & Access Operations
- Operate and support user lifecycle (joiner/mover/leaver), groups, and access requests in Google Workspace and AWS IAM Identity Center.
- Support SSO/SAML/OAuth integrations and basic troubleshooting (login issues, MFA enforcement, access exceptions).
- Assist with periodic access reviews and produce audit-ready evidence (exports, screenshots, change logs).
2) Endpoint Security Operations
- Support endpoint enrollment and compliance monitoring via: Jamf Pro / Apple Business Manager, Google Endpoint Management.
- Triage and follow up endpoint security alerts and hygiene issues (device compliance, encryption status, OS version baseline).
3) Security Monitoring & First Response (Tier-1)
- Perform daily checks and triage on alerts from: Palo Alto Cortex XDR, Security logs / DLP alerts (Google Workspace DLP / Prisma Cloud DLP).
- Execute initial incident handling steps: validate alert, gather context, contain at a basic level (e.g., disable account, isolate device per runbook), document, and escalate to Security Engineer/Lead.
4) Data Protection (DLP) Operations
- Monitor and follow up DLP policy violations in Google Workspace DLP and Prisma Cloud DLP.
- Coordinate user communication and remediation actions with IT/HR when needed.
5) Compliance Support & Documentation
- Maintain operational runbooks, SOPs, and audit evidence packs.
- Support internal audits and external compliance requests (e.g., access control, remote access, endpoint protection).
Qualifications
- 2+ years in IT administration, IT support, or security operations.
- Familiar with Google Workspace administration and common SSO concepts (SAML/OAuth).
- Hands-on exposure to at least one: MDM (Jamf/Google Endpoint Management), EDR (Cortex XDR), or DLP.
- Strong ticketing/process discipline, detail-oriented, good documentation habits.
Nice to Have
- Experience in regulated environments (financial services/fintech) and audit support.
- Basic networking/security fundamentals (VPN concepts, firewalls, logs).
