This is a hybrid role (Security Operations + Desktop Support) responsible for securing an enterprise-scale IT and Operational Technology (OT) environment. The position balances remote security monitoring with physical, on-site technical support for office and industrial plant settings.

Core Responsibilities

• Security Ops (70%): Monitor, triage, and investigate security alerts (SIEM, EDR, Cloud). Lead incident response for phishing, malware, and unauthorized access.
• Desktop & Site Support (30%): Provide Level 2 technical support for workstations, industrial PCs (HMIs), and end-user hardware.
• Engineering & Hunting: Tune detection rules, perform proactive threat hunting using the MITRE ATT&CK framework, and assist with automation via PowerShell.
• Identity & Vulnerability: Manage Active Directory/Entra ID permissions and overs...