Security Product Operations specialist

We are looking for a Security Product Operations Specialist to manage, administer, optimize, and support security tools and platforms that protect our enterprise infrastructure. The ideal candidate will have hands-on experience in SIEM (Splunk), EDR/XDR, SOAR, network security tools (firewalls, VPN, Zscaler), cloud security tools such as CSPM, CNAPP, CASB, OT security tools, and vulnerability remediation. This role requires technical proficiency in security product management, monitoring, and troubleshooting to enhance the organization's cybersecurity posture.

Key Responsibilities:

1. Security Tool Management & Administration

• Deploy, configure, and maintain security products, including Splunk SIEM, EDR/XDR, SOAR, Zscaler, firewalls, VPNs, and OT security tools.
• Ensure security tools are fully operational, optimized, and integrated into security workflows.
• Perform regular updates, patch management, and performance tuning for security tools.

2. Threat Monitoring & Incident Handling

• Monitor security alerts and logs from SIEM, EDR, XDR, and network security tools to detect anomalies.
• Assist in incident investigation and response by correlating logs and security events.
• Work with SOC and incident response teams to prioritize, escalate, and mitigate threats.

3. Automation & SOAR Integration

• Configure SOAR playbooks to automate security response workflows.
• Develop scripts using Python, PowerShell, or APIs to automate tool integrations and reporting.

4. Vulnerability Remediation & Risk Reduction

• Support vulnerability management by analyzing and coordinating remediation efforts with IT and DevSecOps teams.
• Track patch management status for security tools and ensure compliance with security policies.

5. Compliance & Reporting

• Generate dashboards and reports from SIEM, EDR, and other security tools to assess the security posture.
• Ensure compliance with security standards (NIST, ISO 27001, CIS Controls, SOC 2, PCI DSS, etc.).
• Assist in internal audits and regulatory assessments related to security products.

6. OT & Network Security Operations

• Support security operations in OT/ICS environments, ensuring network segmentation and secure configurations.
• Work with network teams to manage firewalls, VPNs, and secure access solutions like Zscaler.
• Cloud security tool like CSPM, CNAPP

Required Qualifications & Skills:

Technical Skills:

• Hands-on experience with security tools such as Splunk SIEM, Microsoft Defender, CrowdStrike EDR, Cyware SOAR, Zscaler VPN, Palo Alto firewalls, DLP, Cyber Defense tools, cloud security tools like CSPM, CNAPP and SOAR platforms.
• Knowledge of network security protocols, VPNs, IDS/IPS, and firewall policies.
• Familiarity with MITRE ATT&CK, NIST CSF, and Zero Trust security models.
• Basic scripting knowledge (Python, PowerShell, or Bash) for automation.

Experience:

• 4-6 years of experience in security tools operations, administration product management, or security tool administration.
• Prior experience working in SOC, security engineering and operations and vulnerability management is a plus.

Certifications (Preferred):

• Splunk Certified Administrator,
• Microsoft Security certifications (SC-200, SC-300), 
• CISA, CISM, GIAC (GCIH, GCIA, GCFA), CEH, CCSP, CCSK or equivalent.

Why Join Us?

• Work with leading-edge security products and tools to safeguard enterprise assets.
• Be part of a dynamic cybersecurity team with opportunities for growth and skill development.
• Contribute to threat defense, security automation, and risk reduction strategies.

If you're passionate about security tools, operations, and automation, we encourage you to apply!

Care to join us. Find out what life at Haleon is really like www.haleon.com/careers/

At Haleon we embrace our diverse workforce by creating an inclusive environment that celebrates our unique perspectives, generates curiosity to create unmatched understanding of each other, and promotes fair and equitable outcomes for everyone. We're striving to create a climate where we celebrate our diversity in all forms by treating each other with respect, listening to different viewpoints, supporting our communities, and creating a workplace where your authentic self belongs and thrives. We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.

As you apply, we will ask you to share some personal information, which is entirely voluntary. We want to have an opportunity to consider a diverse pool of qualified candidates and this information will assist us in meeting that objective and in understanding how well we are doing against our inclusion and diversity ambitions. We would really appreciate it if you could take a few moments to complete it. Rest assured, Hiring Managers do not have access to this information and we will treat your information confidentially.

Haleon is an Equal Opportunity Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class.

Accommodation Requests

If you require a reasonable accommodation or other assistance to apply for a job at Haleon at any stage of the application process, please let your recruiter know by providing them with a description of specific accommodations you are requesting. We’ll provide all reasonable accommodations to support you throughout the recruitment process and treat all information you provide us in confidence.