IT Security Specialist (SecOps)

Job Title: IT Security Specialist (SecOps) - Pontiac, MI

Location: Pontiac, MI

Work Type: Hybrid (2 days onsite per week)

Experience Level: Junior to Mid-Level (5+ years)

Job Summary

We are seeking a skilled IT Security Specialist to join the Security Operations (SecOps) team. This role is responsible for evaluating the effectiveness of security controls, monitoring and protecting enterprise systems, and responding to security threats. The ideal candidate will have hands-on experience in security operations, strong troubleshooting capabilities, and a proactive mindset toward evolving cybersecurity threats.

Key Responsibilities

• Monitor, analyze, and respond to security events and incidents across enterprise environments
• Evaluate internal data controls, technical systems, and business processes to ensure security and compliance
• Perform security reviews, risk assessments, and vulnerability analysis
• Conduct threat hunting, detection engineering, or network security activities
• Troubleshoot technical security issues and document findings, solutions, and procedures
• Collaborate with cross-functional teams and stakeholders in client-facing environments
• Support incident response, remediation, and root cause analysis
• Contribute to security automation and reporting using scripting tools (e.g., PowerShell, Python, Bash)
• Stay up to date with the latest cybersecurity threats, tools, and best practices

Required Qualifications

• Minimum 2+ years of hands-on experience in at least one of the following:
  • Security Operations Center (SOC) Analysis
  • Threat Hunting
  • Detection Engineering
  • Network Security Engineering
• Experience working in client-facing environments (email, chat, voice/video collaboration)
• Strong troubleshooting experience in technical systems, including documentation
• Ability to demonstrate knowledge in at least three (3) of the following security domains:
  • Governance, Risk, and Compliance (GRC)
  • Cloud Security and Hosted Applications
  • Containerization Security
  • Application Security
  • Network Security & Zero Trust Architecture (ZTNA)
  • Endpoint Security & OS Hardening
  • Security Automation & Reporting (PowerShell/Python/Bash)
  • Malware Analysis & Digital Forensics
  • Incident Response & Remediation
  • Penetration Testing
  • Cyber Threat Intelligence (CTI)
  • Vulnerability Management
  • Data Protection
• Strong analytical, communication, and problem-solving skills
• Demonstrated eagerness to learn and adapt to the evolving threat landscape

Preferred Qualifications

• Certifications such as:
  • CRISC (ISACA)
  • SSCP (ISC2)
  • CompTIA Security+
• Experience with:
  • Security tools such as CrowdStrike Falcon
  • SOAR platforms and security automation tools
  • AI/ML tools for cybersecurity automation, reporting, or research
• Familiarity with security frameworks and standards:
  • NIST frameworks (CSF 2.0, 800-207, 800-53)
  • MITRE ATT&CK
  • OWASP Top 10 and web application security
• Experience with compliance and regulatory frameworks (e.g., CJIS, HIPAA, PCI)
• Exposure to government or regulated IT environments (StateRAMP/FedRAMP)
• Active participation in the cybersecurity community