Managed Services Lead Consultant MXDR

As a Managed Services Lead Consultant within Check Point’s Infinity Global Services (IGS) Managed eXtended Detection and Response (MXDR) team, you will play a key role in protecting our customers’ digital assets, sensitive data, and critical infrastructure.

You will leverage your expertise in threat detection, incident response, and cloud security to monitor complex environments, identify vulnerabilities, and respond to evolving cyber threats in real time. Working in close collaboration with cross-functional teams, you will develop and implement tailored security strategies that align with industry standards and customer-specific requirements.

This role is ideal for a self-motivated professional with strong technical acumen, a passion for cloud technologies, and a proactive mindset for staying ahead of emerging security threats.

Your Impact & Responsibilities

• Deliver advanced security monitoring services in collaboration with DevOps, product teams, and clients, leveraging SIEM and XDR/EDR solutions such as Microsoft Sentinel, Defender, and Check Point Harmony.
• Monitor, analyze, and investigate security events across cloud environments (especially Azure), using logs and open-source intelligence to identify threats and reduce false positives.
• Develop and maintain environment-specific rules, alerts, and dashboards within SIEM tools, ensuring alignment with client-specific security and compliance needs.
• Create and maintain detailed documentation, including analytical reports, SOPs, training materials, and technical guidelines.
• Provide expert support and guidance in resolving complex security issues, automating tasks, and enhancing operational workflows.
• Support 24/7 operations through on-call rotations, ticket management, and real-time cybersecurity monitoring and response.

Your Knowledge & Skills

• 5+ years of recent cybersecurity experience required
• Two Cyber Security Certifications or one Advanced Certification (CISM, CISSP, SecurityX, Microsoft SC-200 and/or SC-100, Security+, CySA+, CEH, etc)
• Prior SIEM experience
• Tuning
• Alert triage
• Detection Engineering
• Incident Response
• Working knowledge of Operating Systems
• Fundamental Networking knowledge