This job is no longer available. Continue your job search here.
Application Lead
Taguig
Job No. atcp-1081366-s375926
Full-time
Job Description
Lead the effort to design, build and configure applications, acting as the primary point of contact.
Qualifications
CTM / L3 Engineer Job Description:
• Address and resolve Incidents assigned to queue
• Take escalations from L2 security specialists on issues that they are not able to resolve within the defined SLA
• Meet targets/SLAs for tickets being worked on
• Provide technical coverage during Major Incident investigation
• Provide detailed and accurate updates to tickets being worked on
• Propose and implement process improvements
• Drive knowledge sharing sessions with the L2s and L1s
• Complete deliverables on time within budget with zero defect
• Define test points, failure conditions and rollback steps
• Identify and propose possible resolution to service risks and issues
• Create and follow up tickets with MSFT or any third-party providers, as needed, to resolve tickets
• Communicate support status to stakeholders on a regular basis
• Threat hunting and threat remediation
• Report timely on the scheduled shift
• Provide necessary hand offs to other teams to ensure continuous ticket processing and updates
• Assist other team members with functional/technical knowledge when necessary.
• Enhance individual skills through continuous learning
• Create and update FAQ/KB on a regular basis
• Create and participate on RCA especially for critical and/or high impacting tickets
• Knowledge of standard ITIL processes such as life cycle management and ITSM.
Required Skills and Experience (this is for an M365 Defender role):
Defender for Endpoint
• Maintenance of Policies and configuration settings - Antivirus, Attack surface reductions
• Maintain AV health status "healthy" and reporting back to console
• Validate Definition updates distribution and remediate errors
• Maintaining the Policies: Safe Attachments, SafeLink, Anti-Phishing, Antimalware, Antispam
• Managing the Email Workflows for DLP related requirements
Defender for Endpoint
• Manage impersonation protection for critical users
Defender for Cloud Apps
• Application Onboarding
• Policy Management with Threat, activity, and Session Policies
• Application Discovery maintenance
• Perform analysis of activity Logs to investigate and troubleshoot issues related to connected apps
Defender for Cloud Apps
• Respond to health issues
• Manage detection rules
• Manage Entity tags
Additional Skills:
• Purview - Data Loss Prevention
• Purview - Information Protection
• Azure Defender for Cloud
• Cloud Security Posture Management
• Sentinel or SIEM tool
Minimum 5 year(s) of experience is required