Consultant - R01564249

Consultant

Primary Skills:
• Proofpoint email gateway

Job requirements:
• Role Overview We are seeking a temporary Security Operations Analyst to support our Cyber Defense and Security Operations teams during an ongoing acquisition integration project. This role will primarily assist with operational security tasks while the acquired company’s email systems, user identities, and security tooling are transitioned into the corporate environment. This contractor will focus on Proofpoint email security incident handling, SentinelOne threat remediation, and BAU support activities for multiple security platforms, including Zscaler, Silverfort, and Admin By Request. The resource will follow existing SOPs and will also support the development of new documentation where gaps exist. The position is intended to supplement our internal security team and ensure operational continuity throughout the transition period. ________________________________________ Key Responsibilities 1. SOC Incident Response & Threat Handling (Primary Duties) • Triage, investigate, and respond to Proofpoint email security incidents such as phishing attempts, malware alerts, impersonation attacks, and user reported suspicious messages. • Perform SentinelOne endpoint threat remediation, including detection validation and threat investigation. • Document incident findings, actions taken, and remediation outcomes in accordance with internal SOC processes. • Escalate high severity incidents following existing playbooks and communication procedures. ________________________________________ 2. Acquisition Transition Support • Support security operations efforts during the migration of the acquired company's users, email systems, and endpoint infrastructure into the parent organization. • Assist with validation of: o Email routing and delivery post migration o Security control alignment across Proofpoint and SentinelOne o Policy consistency during coexistence periods • Collaborate with IAM, Messaging, Infrastructure, and other Security teams to ensure security posture is maintained throughout the transition. ________________________________________ 3. BAU Support for Security Tools The resource will perform day to day operational tasks across several tools, including: Email & Web Security • Basic user support, troubleshooting, and policy checks for Zscaler Internet Access (ZIA) and Zscaler Client Connector. Identity & Zero Trust Security • Execute routine BAU tasks in Silverfort such as user enrollment, device token updates and coordinating remediation or IPSM and ITDR Findings Endpoint, Access, and Admin Tools • Handle Admin By Request workflows, including privilege elevation approvals aligned with documented guidelines. General Operational Tasks • Work tickets in the security queue within defined SLAs. • Follow runbooks, SOPs, and checklists for all assigned tasks. • Escalate issues outside BAU scope to engineering or senior security staff. ________________________________________ 4. Documentation & SOP Development • Identify areas where procedures or runbooks are missing or incomplete. • Draft new Standard Operating Procedures (SOPs) and update existing documents based on operational activities. • Validate documentation changes with the Security Operations Lead before final publication. • Ensure all incident and BAU activities are recorded with clarity and consistency. ________________________________________ Required Qualifications • Previous experience in a SOC Analyst or Security Operations role. • Hands-on exposure to security platforms including: o Proofpoint (TAP, PPS, or equivalent modules) o SentinelOne EDR • Understanding of phishing indicators, threat categories, malware behavior, and endpoint security fundamentals. • Basic working knowledge of any of the following: o Zscaler o Silverfort o Admin By Request • Ability to follow detailed procedures, runbooks, and SOPs. • Strong written communication skills for documentation and reporting. • Experience working in fast moving operational environments. _______________________________