ProArch is looking for a Security Specialist to join our team. This client-focused position involves working directly with ProArch customers to build and maintain comprehensive security programs. You will leverage a modern security toolset to detect and prevent cyber threats, handling everything from implementation and monitoring to incident response, while being part of an industry-recognized expert group.

What You'll Do

Perform initial setup and deployment of security solutions and operational technology security measures.
Create and deliver detailed reports and maintain technical documentation.
Conduct security training sessions and assessments to enhance security awareness and identify vulnerabilities.
Provide expert advice, guidance, and ad-hoc consulting services to address specific security needs.
Handle ongoing configuration, maintenance, and management of security solutions and systems.
Deliver presentations, conduct proof-of-concepts, and engage with the public through various platforms.
Focus on enhancing and optimizing security programs and processes.
Implement and manage Microsoft Security Solutions, SIEM, and XDR security architecture.
Conduct solution research, design, and emerging technology evaluation.
Manage solution configuration and ticket queues, supporting customers through ticket ownership.
Handle account and permission management, provisioning, and governance for security solutions.
Conduct Microsoft or other third-party vendor security workshops.
Lead Incident Response investigation, reporting, and delivery.
Produce and review reports to support project deliverables.
Create clearly stated remediation recommendations based on industry best practice.
Successfully interface with clients, both internally and externally.
Document and explain technical details in a concise and clear manner.
Manage your personal schedule and project tasks.
Provide weekly time accounting and monthly expense reports.
Travel within Upstate NY and occasionally out of state, as required.

What We're Looking For

Outstanding written, verbal, technical, and non-technical communication and presentation skills.
Self-directed with the ability to prioritize and handle multiple concurrent tasks of high quality.
Proven collaborator with experience in mentoring and guiding a highly technical team.
Eager learner continually improving skill sets, earning certifications, and gaining industry knowledge.
Skilled in leading a conversation with clients to drive security strategy and program improvement.
Exceptional analytical skills.
A well-understood English dialect is a must.
Ability to prioritize effectively and handle shifting priorities professionally.
Commitment to ongoing training and professional certifications as part of the job requirements.
BS or MS in Computer Science/Engineering or significant demonstratable experience in Microsoft Cloud Security.
2-4 years of experience in Cybersecurity Consulting or Microsoft M365 Implementation.
Must have Microsoft Certifications AZ-900 and SC-300. If not held at time of hire, they must be attained within 6 months after hire.

Nice to Have

Certifications such as AZ-500, SC-200, SC-401, CISSP, CCSP, CISM or others are highly desirable.

Technical Stack

Security Information and Event Management (SIEM) systems, particularly Microsoft Sentinel.
Extended Detection & Response (XDR) solutions, such as Microsoft Defender XDR.
SOAR (Security Orchestration and Automated Response).
Managed Detection and Response (MDR) technologies.
Microsoft Cloud Security: Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps, Defender for Cloud, Defender XDR, Defender for IoT.
Microsoft Entra ID Identity Protection, Entra ID & Intune.
Microsoft Sentinel, Microsoft Purview, IRM, DLP, Insider Risk.
CrowdStrike Endpoint, Identity, XDR.
Vulnerability Management tools, such as Qualys.
Security Awareness Training tools, such as KnowBe4.
Major Identity Provider and related security solutions, such as Microsoft Entra ID, Identity Protection, Active Directory, Defender for Identity.
Policy and Device Management solutions like MEM, Intune, Azure Arc, GPO.
Azure DevOps, Kusto Query Language (KQL), Splunk Processing Language (SPL).
Scripting languages like AZCLI, PowerShell and Python.
Power Automate and Logic Apps.
Non-Microsoft Cloud Security knowledge like GCP, AWS.