Nadiya Kreynin’s Post

100% REMOTE ROLE. Though locals are preferred but not mandatory. Please share the profiles at karunakar@collaboratesolutions.com / joshua@collaboratesolutions.com #Azure_Cloud_Cyber_Security_SME #Chicago_IL #12_Months Identity and Access Management – Entra ID RBAC, Conditional Access Policies, Active Directory ID, PIM/PAM, Active Directory Connect, AD FS, ID Protection, MFA Security monitoring includes log aggregation/centralization, correlation, and alerting of security events and incidents. Hands-on experience with Azure policy design, policy exemption, compliance and non-compliance dashboard understanding, remediation task for non-compliance. Experience in Cloud adoption framework, well architected framework, security solution design. Expertise in cybersecurity solutions like Microsoft Defender for Cloud, Defender for endpoint, SOC, MDR, SIEM, SOAR, DAM, etc. Knowledge of MS purview, DLP, Insider risk policies etc. Configure rules for real-time alerting in SIEM tool for events, analytic rules, automation rules, hunting queries & Playbook. Knowledge of 3rd party tools CrowdStrike, LogRhythm, Netspoke, semperis, Illumio Participates in the incident response and investigation process. Knows about network architecture and protocols like TCP/IP, HTTP, etc. Security Services - Security Operation Center, Key Vault, Log Analytics, Monitor Apply and implement cloud security technologies. Review existing cloud security measures and processes. Implement security as a core part of all design and development of the client’s cloud solutions. Recommend best practices based on leading industry insights. Map security controls to compliance requirements for cloud environments. Provide incident response support as a key stakeholder. Identify, triage, and remediate security detections and anomalies. Assess vulnerabilities and attacker tactics, techniques, and procedures (TTP) and provide defensive action to locate and prevent threats. Work creatively and analytically in a problem-solving environment.

#W2_Only 100% REMOTE ROLE. Though locals are preferred but not mandatory. Please share the profiles at karunakar@collaboratesolutions.com   #Azure_Cloud_Cyber_Security_SME #Chicago_IL #12_Months   Identity and Access Management – Entra ID RBAC, Conditional Access Policies, Active Directory ID, PIM/PAM, Active Directory Connect, AD FS, ID Protection, MFA Security monitoring includes log aggregation/centralization, correlation, and alerting of security events and incidents. Hands-on experience with Azure policy design, policy exemption, compliance and non-compliance dashboard understanding, remediation task for non-compliance. Experience in Cloud adoption framework, well architected framework, security solution design. Expertise in cybersecurity solutions like Microsoft Defender for Cloud, Defender for endpoint, SOC, MDR, SIEM, SOAR, DAM, etc.  Knowledge of MS purview, DLP, Insider risk policies etc. Configure rules for real-time alerting in SIEM tool for events, analytic rules, automation rules, hunting queries & Playbook. Knowledge of 3rd party tools CrowdStrike, LogRhythm, Netspoke, semperis, Illumio Participates in the incident response and investigation process. Knows about network architecture and protocols like TCP/IP, HTTP, etc. Security Services - Security Operation Center, Key Vault, Log Analytics, Monitor Apply and implement cloud security technologies.  Review existing cloud security measures and processes.  Implement security as a core part of all design and development of the client’s cloud solutions.  Recommend best practices based on leading industry insights.  Map security controls to compliance requirements for cloud environments.  Provide incident response support as a key stakeholder.   Identify, triage, and remediate security detections and anomalies.  Assess vulnerabilities and attacker tactics, techniques, and procedures (TTP) and provide defensive action to locate and prevent threats.  Work creatively and analytically in a problem-solving environment.

Hello Professionals, Its a W2 role. 100% REMOTE ROLE. Though locals are preferred but not mandatory.  Position: Azure Cloud Cyber Security SME- Location: Chicago, IL Duration: 12 Months experience: 8+ years Visa: any visa except OPT and CPT Identity and Access Management – Entra ID RBAC, Conditional Access Policies, Active Directory ID, PIM/PAM, Active Directory Connect, AD FS, ID Protection, MFA Security monitoring includes log aggregation/centralization, correlation, and alerting of security events and incidents. Hands-on experience with Azure policy design, policy exemption, compliance and non-compliance dashboard understanding, remediation task for non-compliance. Experience in Cloud adoption framework, well architected framework, security solution design. Expertise in cybersecurity solutions like Microsoft Defender for Cloud, Defender for endpoint, SOC, MDR, SIEM, SOAR, DAM, etc.  Knowledge of MS purview, DLP, Insider risk policies etc. Configure rules for real-time alerting in SIEM tool for events, analytic rules, automation rules, hunting queries & Playbook. Knowledge of 3rd party tools CrowdStrike, LogRhythm, Netspoke, semperis, Illumio Participates in the incident response and investigation process. Knows about network architecture and protocols like TCP/IP, HTTP, etc. Security Services - Security Operation Center, Key Vault, Log Analytics, Monitor Apply and implement cloud security technologies.  Review existing cloud security measures and processes.  Implement security as a core part of all design and development of the client’s cloud solutions.  Recommend best practices based on leading industry insights.  Map security controls to compliance requirements for cloud environments.  Provide incident response support as a key stakeholder.   Identify, triage, and remediate security detections and anomalies.  Assess vulnerabilities and attacker tactics, techniques, and procedures (TTP) and provide defensive action to locate and prevent threats.  Work creatively and analytically in a problem-solving environment.

Highly recommended opportunity at a highly recommended company! Benefits include "generous equity". It's a good time to get on board, now more than ever. 🚀 📈 #IAM #Identity #AccessManagement #MobileSecurity iVerify Rocky Cole #opportunity #hiring #cybersecurity #informationsecurity #Engineer #generous #equity

Why Self-Healing Software? Absolute Security offers a unique capability: the power of self-healing technology. This ensures that critical applications—such as endpoint protection, data encryption, and compliance tools—remain intact and functional even if tampered with or uninstalled by a malicious actor. Below are a few key areas where this could make a substantial impact for your organization: Mitigating Cyber Risks Across a Distributed Workforce: As more employees work remotely, maintaining visibility and control over distributed devices becomes more challenging. Absolute Security provides real-time monitoring and remediation capabilities, allowing IT teams to ensure compliance and secure all endpoints, regardless of location. Ensuring Compliance: Meeting compliance requirements such as GDPR, HIPAA, or PCI-DSS requires a robust, reliable security infrastructure. Absolute S enables continuous compliance by automatically repairing or reinstalling critical applications if they're disabled, ensuring that your endpoints are always audit-ready. Reducing IT Overhead with Automation One of the most significant benefits of a self-healing platform is reduced manual intervention. The ability to automate responses to security incidents—such as reinstalling key software—frees up your IT team to focus on more strategic initiatives. Key Benefits of Implementing Absolute Security: Near Real time visibility and control across all endpoints, on or off the corporate network. Automated self-healing for critical Security applications, reducing system vulnerabilities. Centralized management, ensuring devices stay compliant with security policies. Quick recovery from cyber incidents, minimizing operational disruption. In summary, incorporating self-healing software like Absolute Security would empower your IT team to proactively manage cybersecurity threats while ensuring continuous compliance, particularly for remote and hybrid work environments. Message me to see a demo - OAshraf@Absolute.com #Cyberresilience #remoteworkforce #Complaince #assetmanagement #NIST

15+ Years in IT: A Journey Through the Tech Landscape (And a Frustrating Job Search) 🧵 /1 My career in IT has been a winding road, a journey through the ever-evolving landscape of technology. Over the past 15+ years, I've had the privilege of immersing myself in a diverse range of roles and responsibilities, gaining a comprehensive understanding of the intricate workings of the digital world. From my early days as a Help Desk Technician, troubleshooting desktop issues and providing remote support, I developed a strong foundation in customer service and a passion for problem-solving. I wasn't just fixing computers; I was learning the nuances of phone systems, running cables, and configuring security cameras. This hands-on experience ignited a desire to delve deeper into the technical intricacies of IT infrastructure. I transitioned into network engineering, where I honed my skills in designing, implementing, and maintaining robust and secure networks. I wasn't just configuring firewalls; I was learning the complexities of legacy system migrations and implementing cybersecurity controls to ensure data confidentiality, integrity, and availability. I joined a SOC Audit Team, gaining valuable insights into data center best practices and compliance standards. I even worked closely with sales engineers to develop strategies for network video deployments. The allure of the cloud drew me into the realm of cloud computing, where I orchestrated seamless migrations of on-premise infrastructure to data centers. I wasn't just deploying virtual servers and standardized operating system images; I was installing and configuring virtual desktop infrastructure (VDI) solutions, including user management, printing, and other peripherals. I ensured seamless client transitions through pre-migration audits and data center optimization. As the threat landscape evolved, I embraced the challenges of cybersecurity. I wasn't just implementing security solutions; I was leading the design, implementation, and maintenance of comprehensive security programs, including firewall infrastructure and centralized management. I spearheaded proactive vulnerability and threat assessments, utilizing industry frameworks (CIS, NIST, ISO 27001) to identify and mitigate risks. I continuously monitored logs, network traffic, and systems for anomalies and security threats, leading incident response and remediation efforts. Along the way, I delved into virtualization, deploying and managing virtual machines and supporting legacy environments. I embraced project management, leading initiatives from inception to completion, ensuring timely delivery and stakeholder satisfaction. And I discovered a passion for data analysis, streamlining processes, and improving decision-making through automation and insightful reporting.

You might have the best developers in the world, but they aren’t going to be able to reliably test thousands of lines of code. The result? Faulty updates, degraded data security, and unhappy end users. The good news is there’s a tool for that. Check out our infographic to learn six ways a code quality tool prevents security risks in Salesforce.

Backing up Salesforce data is vital to protect against accidental deletions, data corruption, and unforeseen issues. This blog shares best practices, like setting the right backup frequency, using automated solutions, and securing offsite storage. Read the full blog post here: https://lnkd.in/ggnFuRdT #CyberGradeTech #CyberAge #Salesforce

🔒 𝐀𝐩𝐞𝐱 𝐕𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐢𝐞𝐬: "𝐖𝐢𝐭𝐡𝐨𝐮𝐭 𝐒𝐡𝐚𝐫𝐢𝐧𝐠" 𝐚𝐧𝐝 𝐙𝐞𝐫𝐨 𝐓𝐫𝐮𝐬𝐭 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 🔒 In an era of escalating cyber threats and a shift to hybrid work environments, Zero Trust Security and secure coding practices like handling Apex vulnerabilities in Salesforce are redefining how organizations protect their assets. Here's why both are essential for modern enterprises: 𝐔𝐧𝐝𝐞𝐫𝐬𝐭𝐚𝐧𝐝𝐢𝐧𝐠 "𝐖𝐢𝐭𝐡𝐨𝐮𝐭 𝐒𝐡𝐚𝐫𝐢𝐧𝐠" 𝐢𝐧 𝐀𝐩𝐞𝐱 - 𝐔𝐧𝐫𝐞𝐬𝐭𝐫𝐢𝐜𝐭𝐞𝐝 𝐀𝐜𝐜𝐞𝐬𝐬: The "Without Sharing" mode in Apex allows code to bypass user permissions, enabling access to all records and making changes without restriction. - 𝐏𝐨𝐭𝐞𝐧𝐭𝐢𝐚𝐥 𝐑𝐢𝐬𝐤𝐬: While useful for administrative functions, this can inadvertently expose sensitive data or create compliance risks if not carefully implemented. - 𝐁𝐞𝐬𝐭 𝐏𝐫𝐚𝐜𝐭𝐢𝐜𝐞𝐬: Always evaluate the necessity of "Without Sharing" in your code and ensure it’s complemented with additional checks, such as contextual user permissions and strict validation logic. 1️⃣ 𝐃𝐚𝐭𝐚 𝐏𝐫𝐨𝐭𝐞𝐜𝐭𝐢𝐨𝐧 - 𝐒𝐞𝐧𝐬𝐢𝐭𝐢𝐯𝐞 𝐃𝐚𝐭𝐚 𝐂𝐨𝐧𝐭𝐫𝐨𝐥: Ensures only authenticated users access critical data through strict policies. - 𝐕𝐢𝐬𝐢𝐛𝐢𝐥𝐢𝐭𝐲 𝐀𝐜𝐫𝐨𝐬𝐬 𝐄𝐧𝐯𝐢𝐫𝐨𝐧𝐦𝐞𝐧𝐭𝐬: Tracks data movement to enforce consistent security. - 𝐒𝐡𝐚𝐝𝐨𝐰 𝐈𝐓 𝐌𝐢𝐭𝐢𝐠𝐚𝐭𝐢𝐨𝐧: Prevents unauthorized SaaS usage (e.g., Dropbox), reducing data leak risks. 2️⃣ 𝐏𝐞𝐫𝐟𝐨𝐫𝐦𝐚𝐧𝐜𝐞  - 𝐄𝐟𝐟𝐢𝐜𝐢𝐞𝐧𝐜𝐲: Cloud-native architectures avoid the bottlenecks of traditional security layers. - 𝐒𝐜𝐚𝐥𝐚𝐛𝐢𝐥𝐢𝐭𝐲: Handles traffic spikes, enabling seamless remote work. - 𝐔𝐬𝐞𝐫 𝐄𝐱𝐩𝐞𝐫𝐢𝐞𝐧𝐜𝐞: Security meets speed—no more trade-offs. 3️⃣ 𝐒𝐢𝐦𝐩𝐥𝐢𝐜𝐢𝐭𝐲 - 𝐔𝐧𝐢𝐟𝐢𝐞𝐝 𝐏𝐨𝐥𝐢𝐜𝐢𝐞𝐬: Consolidates tools for streamlined management. - 𝐑𝐞𝐝𝐮𝐜𝐞𝐝 𝐂𝐨𝐦𝐩𝐥𝐞𝐱𝐢𝐭𝐲: Eliminates multi-vendor chaos and manual integration headaches. - 𝐂𝐨𝐬𝐭 𝐒𝐚𝐯𝐢𝐧𝐠𝐬: Simplifies operations, cutting infrastructure expenses. 4️⃣ 𝐒𝐜𝐚𝐥𝐞 - 𝐄𝐥𝐚𝐬𝐭𝐢𝐜 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲: Dynamically adjusts to demand, whether during peak periods or global disruptions. - 𝐆𝐥𝐨𝐛𝐚𝐥 𝐂𝐨𝐯𝐞𝐫𝐚𝐠𝐞: Protects on-prem, cloud, and hybrid setups consistently. - 𝐑𝐞𝐬𝐨𝐮𝐫𝐜𝐞 𝐄𝐟𝐟𝐢𝐜𝐢𝐞𝐧𝐜𝐲: Shifts from physical appliances to scalable cloud solutions. 5️⃣ 𝐎𝐮𝐭𝐜𝐨𝐦𝐞𝐬 - 𝐒𝐭𝐫𝐨𝐧𝐠𝐞𝐫 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐏𝐨𝐬𝐭𝐮𝐫𝐞: Continuously verifies access to adapt to threats. - 𝐂𝐨𝐦𝐩𝐥𝐢𝐚𝐧𝐜𝐞 𝐒𝐮𝐩𝐩𝐨𝐫𝐭: Meets regulatory standards with ease. - 𝐑𝐞𝐬𝐢𝐥𝐢𝐞𝐧𝐜𝐞: Minimizes risks by strengthening defenses against breaches. Apex vulnerabilities and Zero Trust Security are interconnected in the mission to protect sensitive data and systems. 📢 𝐖𝐡𝐚𝐭’𝐬 𝐲𝐨𝐮𝐫 𝐨𝐫𝐠𝐚𝐧𝐢𝐳𝐚𝐭𝐢𝐨𝐧 𝐝𝐨𝐢𝐧𝐠 𝐭𝐨 𝐚𝐝𝐝𝐫𝐞𝐬𝐬 𝐭𝐡𝐞𝐬𝐞 𝐜𝐡𝐚𝐥𝐥𝐞𝐧𝐠𝐞𝐬? #Apex #ZeroTrust #CyberSecurity #CloudSecurity #SecureCoding #Salesforce