Ensign is hiring !

Key Responsibilities:

• Monitor security events and alerts from SIEM tools and other security platforms.

• Perform initial analysis and triage of security incidents based on standard operating procedures (SOPs).

• Escalate verified incidents to L2/L3 analysts or Incident Response team when necessary.

• Document alerts, investigations, and incident handling actions accurately in ticketing systems.

• Perform basic threat intelligence lookups and log analysis to support investigations.

• Follow defined playbooks and assist in fine-tuning alert rules and use cases.

• Support daily health checks on security monitoring tools and systems.

• Maintain awareness of current cybersecurity threats and trends.
   

Requirements:

Education & Certification:

• Diploma or Degree in Cybersecurity, Information Technology, Computer Science, or a related field.

• Relevant certifications (preferred but not mandatory): CompTIA Security+, EC-Council CEH, Microsoft SC-200, etc.
   

Technical Skills:

• Basic understanding of networking concepts (TCP/IP, DNS, firewalls, etc.).

• Familiarity with SIEM tools (e.g., Splunk, QRadar, LogRhythm).

• Basic knowledge of Windows and Linux operating systems.

• Understanding of cybersecurity fundamentals and common attack techniques.