Security Specialist

Security Specialist DuraServ Corp - 3.1 Coppell, TX Job Details Full-time 4 hours ago Qualifications Document compliance management CMMC Intrusion detection analysis System administration Azure Operating systems FedRAMP Bachelor's degree in information technology Vulnerability scanning implementation Technical documentation ISO standards Triage Security risk assessment investigation IT system monitoring Compliance audits & assessments Security classification Public Cloud Incident Escalation 3 years Data governance Endpoint Detection and Response (EDR) CEH Analysis skills Records management Information Security Bachelor's degree Data classification Continuous improvement Data Security (Data management) Incident management operations support Full Job Description

JOB SUMMARY

The Security Specialist is responsible for supporting and improving the organization's overall security posture through continuous monitoring, analysis, coordination, and execution of security activities. This role focuses on vulnerability management, threat analysis, attack surface visibility, data protection, endpoint and cloud security operations, and regulatory compliance across enterprise and cloud environments. The Security Specialist works closely with IT, cloud, and compliance teams to assess risk, enforce security controls, and ensure security practices are consistently applied and aligned with organizational policies and regulatory requirements.

ESSENTIAL JOB FUNCTIONS

Monitor, analyze, and support remediation of security vulnerabilities across enterprise systems, applications, endpoints, cloud environments, and network infrastructure. Assess and prioritize security findings, threats, and control gaps based on business risk, attack exposure, and operational impact. Support incident response activities, including alert triage, threat investigation, escalation, documentation, and coordination with technical teams. Monitor and evaluate the organization's attack surface to identify exposed assets, misconfigurations, unauthorized access risks, and security weaknesses. Support security operations within Microsoft Azure environments, including monitoring and administration activities related to Microsoft Defender, Microsoft Sentinel, Microsoft Purview, and related security technologies. Assist with endpoint, operating system, and network security initiatives, including configuration validation, compliance monitoring, access controls, firewall reviews, and device management activities. Support data governance and data security posture management initiatives, including data classification, labeling, access monitoring, and protection of sensitive information. Assist with implementation, validation, and documentation of security controls aligned with regulatory, compliance, and cybersecurity frameworks, including NIST, CMMC, ISO, SOC, CIS, and FedRAMP standards. Maintain and update security policies, procedures, standards, audit evidence, operational documentation, and compliance tracking records. Collaborate with engineering, infrastructure, data, and compliance teams to improve security posture, support secure adoption of AI technologies, participate in security assessments and tabletop exercises, and recommend continuous improvement opportunities. This job description is not designed to cover or contain a comprehensive listing of the required activities, duties, or responsibilities of the team member. Duties, obligations, and activities may change, or new ones may be assigned at any time with or without notice. Reasonable accommodation may be made to enable individuals with disabilities to perform these essential functions.

LEADERSHIP COMPETENCY MODEL

This role requires the demonstration of the following competencies: Instills Trust | Communicates Effectively | Demonstrates Customer Focus | Takes Initiative | Makes Quality Decisions | Drives Growth | Ensures Accountability | Drives Results

KNOWLEDGE, SKILLS, AND ABILITIES

Strong knowledge of cybersecurity principles, threat detection, vulnerability management, incident response, and security monitoring within enterprise environments. Working knowledge of networking, operating systems, identity and access management, endpoint security, cloud security concepts, and enterprise security controls. Experience using security technologies and tools, including SIEM platforms, EDR/XDR solutions, vulnerability scanning tools, email security solutions, and Microsoft security technologies within Azure environments. Ability to investigate security alerts and incidents, analyze logs and attack activity, prioritize remediation efforts, and support containment and recovery activities. Ability to support security governance and compliance initiatives, including control validation, audit support, documentation management, and alignment with frameworks such as NIST, CIS, ISO, SOC, CMMC, and FedRAMP. Strong analytical, organizational, and communication skills with the ability to document findings, escalate risks appropriately, collaborate across technical and business teams, and operate effectively within established security processes and procedures.

SUPERVISORY RESPONSIBILITIES

This position does not have direct supervisory responsibilities; however, it will collaborate closely with cross-functional teams and provide guidance and subject matter expertise in an advisory capacity.

WORK ENVIRONMENT AND PHYSICAL DEMANDS

In office environment Prolonged periods sitting at a desk and working on a computer Must be able to lift up to 15 pounds at times

PLANNED BUSINESS TRAVEL

This job requires no planned business travel

EDUCATION AND EXPERIENCE

Bachelor's degree in Cybersecurity, Information Technology, or related field, or equivalent hands‑on experience 3 - 6years of practical experience in information security operations Experience working in enterprise SOC, IT security, or infrastructure teams Relevant industry certifications preferred, such as CompTIA Security+, Certified Ethical Hacker (CEH), Microsoft Azure security certifications, Microsoft Purview certifications, or other comparable cybersecurity and cloud security credentials

EEO STATEMENT

DuraServ is an equal-opportunity employer. We prohibit discrimination and afford equal employment opportunities to team members and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status, or any other characteristic protected by law. Our EEO policy applies to all aspects of the relationship between DuraServ and its team members, including recruitment, employment, promotion, transfer, training, working conditions, compensation, benefits, and application of policies.