Consultant

This position operates in a 24x7 operations center environment and requires shift flexibility

SIEM (Splunk / QRadar / Sentinel), EDR (CrowdStrike / Sentinel One), Firewall platforms (Palo Alto / Fortinet / Cisco), Network monitoring tools (SolarWinds / PRTG / Nagios), VPN platforms, Ticketing systems (ServiceNow / Jira), Microsoft 365, and Active Directory.

CompTIA Security+, Network+, or equivalent certification (or active pursuit).

Hands-on experience with SIEM platforms such as Splunk, IBM QRadar, or Microsoft Sentinel.

Exposure to ticketing systems such as ServiceNow, Jira, or Remedy.

Familiarity with IDS/IPS, endpoint detection and response (EDR), or vulnerability management tools.

Experience with scripting (Python, Bash, or PowerShell) for basic automation or log parsing.

Understanding of MITRE ATT&CK framework and common threat actor TTPs.