Deploy, tune and optimize MS Sentinel and Defender platforms.
Perform new customer onboarding
Act as a Subject Matter Expert for MS Sentinel and MS Defender
Act as an escalation point for SOC analysts as well as assigned customers in case of complex technical questions
Handle technical account management responsibilities for assigned customers
Conduct weekly, monthly and quarterly service review calls with assigned customers
Perform Quality Assurance reviews
Mentor team with technical advice / support
Recommend and implement process improvements in order to drive efficiencies, reduction of the average time to troubleshoot, and reducing false-positive alerts
Embodies Trusted Advisor techniques to build client's trust and influence loyalty
Confidently run Great Meetings, differentiating services per MSS positioning
Helps improve the business, proactively engages when service is inconsistent, or risk is identified
Identifies and manages out of scope requirements and facilitates the resolution
Perform on-call duties as per agreed schedule
Services Improvement and Enhancement - 35% job weight
Develop and improve Standard Operating Procedures (SOPs) and knowledge base articles
Develops methodologies, strategies, process documentation and templates suitable for use by other Consultants, Specialists and Analysts
Develop new and tune existing use cases
Accountable for executing on identified recommendations to improve client's security posture
Conducts technical, procedural and incident handling knowledge transfer training sessions
Develop reports and presentations, both internal and external.
Contributes to the development of service definition and content packs
Makes recommendations to improve workflows and drive automation, creating efficiencies
Identifies out of scope requirements and bring to manager's attention
Professional Development - 15% job weight
Participate notably in assigned self-paced training
Attends training sessions or shadowing activities, and obtains industry related certifications as determined by Manager
What we expect of you:
Bachelor's degree (B.A./B.S.) or 3-year diploma in Engineering, Computer Science, or a Technology related field and 5 years of Security Support experience in a client-focused environment, and/or working in security operations center, OR
9 years total of Information Technology experience to include 5 years of Security Support experience in a client-focused environment, and/or working in security operations center
At least 2 advanced or expert level certifications in Managed Security Services discipline, including but not limited to:
o CCIE Security; Palo Alto PCNSE, Cortex XDR-PMXdC; IBM QRadar Security: Administrator and Deployment Professional; SANS GCIA, GCIH, Splunk, CrowdStrike Falcon: CCCS, CCFH, CCFA, CCIS; Exabeam: Advanced or Principal Implementation Engineer; Microsoft SC-200, SC-100.
Demonstrated strong hands-on working experience on SIEM technologies.
The position is part of a 7-day per week, 24-hour per day managed services operations. To provide the required coverage, must be available to work other shifts including weekends, holidays, and overtime, perform on-call duties .
Excellent prioritization and time management skills, including the ability to manage their time without supervision to focus on priorities and handle multiple tasks simultaneously.
Experience designing, implementing, and supporting IT infrastructure and Information Systems Design or support involving hardware, software and services at an enterprise level for at least one discipline in the Managed Security Services portfolio
Direct involvement in working with internal and external teams to impl
Benefits
Vision insurance
Additional Information
At CDW, we make it happen, together. Trust, connection, and commitment are at the heart of how we work together to deliver for our customers. It's why we're coworkers, not just employees. Coworkers who genuinely believe in supporting our customers and one another. We collectively forge our path forward with a level of commitment that speaks to who we are and where we're headed. We're proud to share our story and Make Amazing Happen at CDW.
The Sr. Security Consultant performs ongoing client support for complex technical performance issues and develops recommendations to ensure adherence to service level agreements and customer service excellence. The Sr. Consultant will specialize in Managed Detection and Response service on Microsoft technology stack, primarily Sentinel and Defender, and act as a subject matter expert. In addition, the Sr Consultant is required to provide input on how to drive process improvements, gain efficiencies, and create opportunities for improved workflow and automation. The Sr Consultant acts as a primary technical owner on the assigned accounts.
This role requires strong hands-on proven working experience on various SIEM technologies. This should include deployment, management, customization, and optimization of SIEM.
Cdw · Mississauga / Forsythe - On