About the Role
We are seeking a Cybersecurity Consultant with strong analytical skills and deep experience in SentinelOne to join our cybersecurity team. The ideal candidate will bring a solid technical foundation in threat detection, response automation, and forensics, with proven expertise in managing high-severity security incidents.
Key Responsibilities:
• Monitor, detect, and respond to security events across endpoints, cloud, and network environments.
• Lead incident response efforts for major security incidents, coordinating containment, eradication, recovery, and post-incident analysis.
• Act as war room lead during critical cybersecurity events—driving action plans, managing timelines, assigning tasks, and providing clear communication to stakeholders.
• Perform in-depth forensics and root cause analysis on compromised endpoints and systems to understand attacker techniques and entry points.
• Develop and maintain automated workflows for alert triage, threat containment, and reporting using tools like SOAR platforms, Python, or PowerShell.
• Collaborate with infrastructure and application teams to implement remediation and hardening measures post-incident.
• Continuously improve detection logic, incident response runbooks, and escalation procedures based on evolving threats.
• Maintain and enhance integrations between EDR, SIEM, threat intelligence, and automation platforms.
• Act as a subject matter expert (SME) for SentinelOne operations and endpoint threat detection.
• Stay current with the latest vulnerabilities, threat actors, and attack techniques relevant to the organization.
Requirements
Qualifications:
5+ years of experience in cybersecurity.
Advanced, hands-on expertise with SentinelOne (required).
Strong knowledge of EDR/XDR, threat hunting, security incident management, malware analysis and endpoint forensics.
Deep understanding of endpoint protection concepts, MITRE ATT&CK framework, and threat intelligence.
Strong analytical, problem-solving, and communication skills, capable of presenting to technical and non-technical stakeholders.
Solid understanding of SIEM solutions and SOAR automation tools.
Hands-on scripting experience with Python, PowerShell, or Bash for automation.
About the Company
SYNIOPS is an IT services company incorporated in Mauritius offering AI Solutions, Cybersecurity Solutions, IT Infrastructure Managed Services and Co-Managed Solutions to clients in Mauritius as well as potential markets across Africa and Europe.