Security Specialist

DuraServ

$70K — $95K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Cybersecurity, Information Technology, or related field, or equivalent hands-on experience.
  • 3 - 6 years of practical experience in information security operations.
  • Experience working in enterprise SOC, IT security, or infrastructure teams.
  • Strong knowledge of cybersecurity principles and security monitoring within enterprise environments.
  • Relevant industry certifications preferred, such as CompTIA Security+, CEH, or Microsoft Azure security certifications.

Responsibilities

  • Monitor and remediate security vulnerabilities across systems and networks.
  • Assess and prioritize security risks based on business impact.
  • Support incident response activities and threat investigation.
  • Evaluate attack surface for exposed assets and security weaknesses.
  • Support security operations specifically within Microsoft Azure environments.
  • Assist with endpoint, OS, and network security initiatives.
  • Collaborate with teams to improve security posture and support secure AI technologies.

Benefits

  • Continuous professional development opportunities.
  • Collaborative team environment with cross-functional support.
  • Access to the latest security technologies and tools.
  • Health and wellness programs and resources.
Full Job Description
JOB SUMMARY

The Security Specialist is responsible for supporting and improving the organization's overall security posture through continuous monitoring, analysis, coordination, and execution of security activities. This role focuses on vulnerability management, threat analysis, attack surface visibility, data protection, endpoint and cloud security operations, and regulatory compliance across enterprise and cloud environments.

The Security Specialist works closely with IT, cloud, and compliance teams to assess risk, enforce security controls, and ensure security practices are consistently applied and aligned with organizational policies and regulatory requirements.

ESSENTIAL JOB FUNCTIONS

  1. Monitor, analyze, and support remediation of security vulnerabilities across enterprise systems, applications, endpoints, cloud environments, and network infrastructure.
  2. Assess and prioritize security findings, threats, and control gaps based on business risk, attack exposure, and operational impact.
  3. Support incident response activities, including alert triage, threat investigation, escalation, documentation, and coordination with technical teams.
  4. Monitor and evaluate the organization's attack surface to identify exposed assets, misconfigurations, unauthorized access risks, and security weaknesses.
  5. Support security operations within Microsoft Azure environments, including monitoring and administration activities related to Microsoft Defender, Microsoft Sentinel, Microsoft Purview, and related security technologies.
  6. Assist with endpoint, operating system, and network security initiatives, including configuration validation, compliance monitoring, access controls, firewall reviews, and device management activities.
  7. Support data governance and data security posture management initiatives, including data classification, labeling, access monitoring, and protection of sensitive information.
  8. Assist with implementation, validation, and documentation of security controls aligned with regulatory, compliance, and cybersecurity frameworks, including NIST, CMMC, ISO, SOC, CIS, and FedRAMP standards.
  9. Maintain and update security policies, procedures, standards, audit evidence, operational documentation, and compliance tracking records.
  10. Collaborate with engineering, infrastructure, data, and compliance teams to improve security posture, support secure adoption of AI technologies, participate in security assessments and tabletop exercises, and recommend continuous improvement opportunities.


This job description is not designed to cover or contain a comprehensive listing of the required activities, duties, or responsibilities of the team member. Duties, obligations, and activities may change, or new ones may be assigned at any time with or without notice.

Reasonable accommodation may be made to enable individuals with disabilities to perform these essential functions.

LEADERSHIP COMPETENCY MODEL

This role requires the demonstration of the following competencies:

Instills Trust | Communicates Effectively | Demonstrates Customer Focus | Takes Initiative | Makes Quality Decisions | Drives Growth | Ensures Accountability | Drives Results

KNOWLEDGE, SKILLS, AND ABILITIES

  • Strong knowledge of cybersecurity principles, threat detection, vulnerability management, incident response, and security monitoring within enterprise environments.
  • Working knowledge of networking, operating systems, identity and access management, endpoint security, cloud security concepts, and enterprise security controls.
  • Experience using security technologies and tools, including SIEM platforms, EDR/XDR solutions, vulnerability scanning tools, email security solutions, and Microsoft security technologies within Azure environments.
  • Ability to investigate security alerts and incidents, analyze logs and attack activity, prioritize remediation efforts, and support containment and recovery activities.
  • Ability to support security governance and compliance initiatives, including control validation, audit support, documentation management, and alignment with frameworks such as NIST, CIS, ISO, SOC, CMMC, and FedRAMP.
  • Strong analytical, organizational, and communication skills with the ability to document findings, escalate risks appropriately, collaborate across technical and business teams, and operate effectively within established security processes and procedures.


SUPERVISORY RESPONSIBILITIES

  • This position does not have direct supervisory responsibilities; however, it will collaborate closely with cross-functional teams and provide guidance and subject matter expertise in an advisory capacity.


WORK ENVIRONMENT AND PHYSICAL DEMANDS

  • In office environment


  • Prolonged periods sitting at a desk and working on a computer
  • Must be able to lift up to 15 pounds at times


PLANNED BUSINESS TRAVEL

  • This job requires no planned business travel


EDUCATION AND EXPERIENCE

  • Bachelor's degree in Cybersecurity, Information Technology, or related field, or equivalent hands-on experience
  • 3 - 6years of practical experience in information security operations
  • Experience working in enterprise SOC, IT security, or infrastructure teams
  • Relevant industry certifications preferred, such as CompTIA Security+, Certified Ethical Hacker (CEH), Microsoft Azure security certifications, Microsoft Purview certifications, or other comparable cybersecurity and cloud security credentials

Similar Jobs

More Jobs at DuraServ

  • Security Specialist
    $70K — $95K *
    Coppell, TX 75019 (Dallas County)
    Information Technology
    In-Person
  • Branch Vice President
    $100K — $130K *
    Fort Myers, FL 33908 (Lee County)
    Business Services
    In-Person
  • Operations Manager
    $86K — $110K *
    Santa Fe Springs, CA 90670 (Los Angeles County)
    Transportation
    In-Person
  • Branch Vice President
    $120K — $150K *
    Suwanee, GA 30024 (Gwinnett County)
    Business Services
    In-Person
  • Branch Vice President
    $120K — $150K *
    Atlanta, GA 30349 (Fulton County)
    Business Services
    In-Person

More Information Technology Jobs

Find similar Security Specialist jobs: