Job Details

About GP Strategies

GP Strategies is a global leader in talent transformation, dedicated to empowering organizations to unlock their full potential. We help businesses enhance workforce performance and achieve strategic goals through innovative, technology-enabled learning solutions. With a proven track record of supporting over 6,000 global organizations worldwide, we combine human expertise with AI-driven insights to deliver customized strategies that upskill talent, drive technology adoption, and
optimize critical processes. Our mission is to create a lasting impact by equipping organizations with the strategy, skills, and tools needed to thrive in a rapidly evolving world.

Role Purpose

Monitor, investigate, and respond to security events to protect the organisation’s endpoints, identities, and cloud environments. Proactively reduce risk through vulnerability management, security patch coordination, and cloud posture auditing, while contributing to continuous improvement through automation, reporting, and support for audit and vendor assurance activities.

Key Accountabilities

Monitoring, Triage & Incident Response

• Manage and respond to security alerts and escalations to ensure timely identification and mitigation of potential threats.
• Analyse security logs and telemetry to identify suspicious activity (e.g., unauthorised access attempts or lateral movement).
• Create clear incident reports for security events, documenting root cause and actionable post-incident insights.

Vulnerability Management & Patching

• Conduct regular vulnerability scanning and remediation using Tenable.io to identify and help mitigate risk within existing systems.
• Assist with security patching and updates for Windows, macOS, and Linux using Microsoft Intune and Quest KACE SMA.
• Help coordinate and oversee patching across endpoints to ensure vulnerabilities are addressed promptly.

Cloud Security Posture & Configuration Assurance

• Help maintain a strong Cloud Security Posture Management (CSPM) framework by auditing AWS and Azure environments against CIS Benchmarks and internal security policies.

Threat Protection Tooling

• Monitor and manage the Microsoft Defender suite to detect and investigate threats across endpoints, identities, and cloud workloads.

Security Automation & Continuous Improvement

• Develop and maintain automated security playbooks and workflows to improve incident response and reduce repetitive manual tasks.

Awareness, Assurance & Third-Party Security

• Execute periodic phishing simulations to evaluate employee awareness and help identify higher-risk user groups.
• Support internal and external audits by providing technical evidence and helping to ensure alignment with relevant standards.
• Participate in software and vendor onboarding to help ensure third-party integrations meet security requirements.

What Success Looks Like

• Security alerts are triaged consistently, escalations are handled promptly, and investigations are well-documented with clear outcomes.
• Vulnerability scanning is run regularly, remediation is performed and progress is tracked, and patching reduces exposure across Windows, macOS, and Linux environments.
• Cloud environments are routinely assessed against CIS Benchmarks and internal policies, and findings are translated into actionable improvements.
• Security workflows and playbooks are improved over time through automation and lessons learned from incidents.

Candidate Profile

Experience & Capability

• Hands-on experience monitoring, triaging, and responding to security alerts and escalations.
• Experience producing incident reports, including root cause analysis and practical post-incident recommendations.
• Comfort working with audit and assurance requests (collecting evidence, explaining controls, and supporting remediation activities).

Technical Strength

• Vulnerability management tooling and processes (including Tenable.io scanning, prioritisation, and remediation tracking).
• Endpoint management and patch orchestration across Windows, macOS, and Linux (e.g., Microsoft Intune, Quest KACE SMA).
• Threat detection and investigation using the Microsoft Defender suite across endpoints, identities, and cloud workloads.
• Cloud security fundamentals and posture management across AWS and Azure, including auditing against CIS Benchmarks.

Mindset & OneGP Behaviours

• Analytical, curious, and calm under pressure when investigating potential security incidents.
• Collaborative and service-oriented, able to work effectively with IT teams and the wider business to reduce risk.
• Continuous improvement mindset, looks for opportunities to automate repeatable tasks and strengthen controls over time.

Why Join GP Strategies

This role offers the opportunity to work across endpoint, identity, and cloud security, helping to reduce risk through a blend of monitoring, vulnerability management, and cloud posture assurance. You’ll collaborate with technical teams and the wider business, contribute to audit and vendor assurance activities, and improve the effectiveness of security operations through automation and continuous improvement.

Completed Security Analyst Job Description

Role Purpose

Monitor, investigate, and respond to security events to protect the organisations endpoints, identities, and cloud environments. Proactively reduce risk through vulnerability management, security patch coordination, and cloud posture auditing, while contributing to continuous improvement through automation, reporting, and support for audit and vendor assurance activities.

Key Accountabilities

- Manage and respond to security alerts and escalations to ensure timely identification and mitigation of potential threats.

- Conduct regular vulnerability scanning and remediation using Tenable.io to identify and help mitigate risks within existing systems.

- Assist with security patching and updates for Windows, macOS, and Linux systems using Microsoft Intune and Quest KACE SMA to maintain system hygiene.

- Help maintain a strong CSPM framework by auditing AWS and Azure environments against CIS Benchmarks and established security policies.

- Monitor and manage the Microsoft Defender suite to detect and investigate threats across endpoints, identities, and cloud workloads.

Automation, Awareness & Assurance

- Develop and maintain automated security playbooks and workflows to increase the efficiency of incident response and repetitive security tasks.

- Execute periodic phishing simulations to evaluate employee awareness and identify high-risk user groups.

- Support internal and external audits and participate in vendor onboarding by providing technical evidence and helping ensure security requirements are met.

Candidate Profile

- Alert triage and incident response capability, including investigation using logs and telemetry.

- Practical vulnerability management and patch coordination across Windows, macOS, and Linux environments.

- Working knowledge of cloud security posture management across AWS and Azure, including assessment against CIS Benchmarks.

- Continuous improvement mindset with interest in automating playbooks/workflows and strengthening controls over time.

#LI-SS2

#India -Remote