Sr. Security Consultant - SIEM Technologies, Mississauga

What you will do:

Deploy, tune and optimize MS Sentinel and Defender platforms.

Perform new customer onboarding.

Act as a Subject Matter Expert for MS Sentinel and MS Defender.

Act as an escalation point for SOC analysts as well as assigned customers in case of complex technical questions.

Handle technical account management responsibilities for assigned customers.

Conduct weekly, monthly and quarterly service review calls with assigned customers.

Perform Quality Assurance reviews.

Mentor team with technical advice / support.

Recommend and implement process improvements in order to drive efficiencies, reduction of the average time to troubleshoot, and reducing false‑positive alerts.

Embodies Trusted Advisor techniques to build client’s trust and influence loyalty.

Confidently run Great Meetings, differentiating services per MSS positioning.

Helps improve the business, proactively engages when service is inconsistent, or risk is identified.

Identifies and manages out of scope requirements and facilitates the resolution.

Perform on‑call duties as per agreed schedule.

Services Improvement and Enhancement:

Develop and improve Standard Operating Procedures (SOPs) and knowledge base articles.

Develop methodologies, strategies, process documentation and templates suitable for use by other Consultants, Specialists and Analysts.

Develop new and tune existing use cases.

Accountable for executing on identified recommendations to improve client’s security posture.

Conduct technical, procedural and incident handling knowledge transfer training sessions.

Develop reports and presentations, both internal and external.

Contribute to the development of service definition and content packs.

Make recommendations to improve workflows and drive automation, creating efficiencies.

Identify out of scope requirements and bring to manager’s attention.

Professional Development:

Participate notably in assigned self‑paced training.

Attend training sessions or shadowing activities, and obtain industry related certifications as determined by Manager.

What we expect of you:

Bachelor’s degree (B.A./B.S.) or 3‑year diploma in Engineering, Computer Science, or a Technology related field and 5 years of Security Support experience in a client‑focused environment, and/or working in security operations center, OR

9 years total of Information Technology experience to include 5 years of Security Support experience in a client‑focused environment, and/or working in security operations center.

At least 2 advanced or expert level certifications in Managed Security Services discipline, including but not limited to: Examples include CCIE Security; Palo Alto PCNSE, Cortex XDR‑PMXdC; IBM QRadar Security Administrator and Deployment Professional; SANS GCIA, GCIH, Splunk, CrowdStrike Falcon: CCCS, CCFH, CCFA, CCIS; Exabeam: Advanced or Principal Implementation Engineer; Microsoft SC‑200, SC‑100.

Demonstrated strong hands‑on working experience on SIEM technologies.

Position is part of a 7‑day per week, 24‑hour per day managed services operations; available to work other shifts including weekends, holidays and overtime, perform on‑call duties.

Excellent prioritization and time management skills, including the ability to manage their time without supervision to focus on priorities and handle multiple tasks simultaneously.

Experience designing, implementing, and supporting IT infrastructure and Information Systems Design or support involving hardware, software and services at an enterprise level for at least one discipline in the Managed Security Services portfolio.

Direct involvement in working with internal and external teams to implement and troubleshoot complex configuration hardware, software and services.

Experience presenting ideas and solutions to clients and adapting presentation style to fit particular client situations.

Demonstrated ability to establish positive working relationships and conduct complex and important work critical to the organization in a team, consulting environment.

Proven ability to select resolutions and techniques that meet technical requirements within the context of best practices, and make recommendations to achieve targeted objectives.

Clear, concise, and engaging communication and presentation skills in various settings.

Collaborative problem‑solving approach and mentorship ability.

Ability to work independently and step into leadership roles.

Consistently achieves high levels of customer satisfaction.

Microsoft Sentinel is a plus. Other SIEM like QRadar, Splunk, Exabeam, SumoLogic is an asset.

Microsoft SC‑200, SC‑100 certifications are a plus.

Pay Range: $47.18 - $66.05 per hour, depending on experience and skill set.

CDW is an equal opportunity employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status or any other basis prohibited by state and local law.

#J-18808-Ljbffr