BETSOL is a cloud-first digital transformation and data management company offering products and IT services to enterprises in over 40 countries. BETSOL team holds several engineering patents, is recognized with industry awards, and BETSOL maintains a net promoter score that is 2x the industry average.

BETSOL’s open source backup and recovery product line, Zmanda (Zmanda.com), delivers up to 50% savings in total cost of ownership (TCO) and best-in-class performance.

BETSOL Global IT Services (BETSOL.com) builds and supports end-to-end enterprise solutions, reducing time-to-market for its customers.

BETSOL offices are set against the vibrant backdrops of Broomfield, Colorado and Bangalore, India.

We take pride in being an employee-centric organization, offering comprehensive health insurance, competitive salaries, volunteer programs, and scholarship opportunities. Office amenities include a fitness center, cafe, and recreational facilities.

Learn more at betsol.com

We are looking for a Senior Security Analyst with strong hands-on experience in email security, Microsoft security technologies, vulnerability management, SIEM monitoring, and incident response. The ideal candidate must have practical experience defending organizations against phishing, impersonation/BEC attacks, endpoint threats, and other cyber threats while continuously improving the organization’s security posture.

Key Responsibilities

Email Security

• Manage and optimize Proofpoint and Microsoft Defender for Office 365.
• Design and implement anti-phishing, impersonation, and BEC protection policies.
• Investigate phishing emails reported by users, perform header and URL analysis, and take remediation actions.
• Identify emerging email-based attack patterns and implement preventive controls.

Microsoft Security & Identity

• Secure Exchange Online, Microsoft Entra ID, and Microsoft 365 environments.
• Implement and manage Conditional Access policies, identity protection policies, and authentication security controls.
• Support implementation of Zero Trust security architecture.

Vulnerability Management

• Perform vulnerability scanning and remediation for Windows servers, Linux servers, and endpoints.
• Use tools such as Tenable or Qualys to identify, prioritize, and track vulnerability.
• Work with infrastructure teams to ensure timely remediation and validation.

Endpoint Security

• Investigate alerts from EDR solutions such as Sophos or Microsoft Defender for Endpoint.
• Analyze endpoint threats and coordinate containment and remediation actions.

SIEM & Security Monitoring

• Monitor and manage SIEM platforms such as Microsoft Sentinel, Wazuh, or similar.
• Develop and tune detection rules, alerts, and dashboards.
• Perform log analysis, threat detection, and investigation of security alerts.

Incident Response & Forensics

• Participate in security incident response and digital forensic investigations.
• Perform root cause analysis and recommend security improvements.

Risk & Third-Party Security

• Conduct security risk assessments across infrastructure and applications.
• Perform third-party/vendor security assessments and identify potential risks.

Mandatory Skills

• 5+ years of experience in cybersecurity or security operations, preferably in enterprise environments.
• Strong hands-on experience managing email security platforms such as Proofpoint and Microsoft Defender for Office 365, including protection against phishing, impersonation, and BEC attacks.
• Experience securing Microsoft environments including Exchange Online, Microsoft Entra ID, and Microsoft 365 security controls, including Conditional Access and identity protection policies.
• Hands-on experience investigating endpoint threats using EDR platforms such as Sophos or Microsoft Defender for Endpoint.
• Experience performing vulnerability management using Tenable or Qualys, including vulnerability analysis, prioritization, and remediation tracking for Windows, Linux, and endpoint systems.
• Hands-on experience working with SIEM platforms such as Microsoft Sentinel, Wazuh, or similar, including log analysis, alert investigation, and detection rule tuning.
• Experience investigating security incidents and performing root cause analysis involving phishing attacks, endpoint compromises, or suspicious authentication activity.
• Good understanding of Zero Trust architecture principles and enterprise security implementations.
• Strong knowledge of Windows and Linux security fundamentals.

Good to Have

• Security certifications such as CISSP, CISM, CEH, SC-200, or SC-300.
• Experience with cloud security (Azure or AWS).
• Experience with security automation or scripting (Python, PowerShell, Bash).

Knowledge of security frameworks such as NIST, ISO 27001, or CIS Controls.