IT Security Specialist
Dycom Industries Inc, Fountain Hill, PA, United States
4/23/26
Bethlehem, Pennsylvania, 18015,
IT Security Specialist
ABOUT THE ROLE...
We are seeking an IT Security Specialist with a strong focus on the
Microsoft security ecosystem
to join our global IT Security & Governance team. This role supports daily enterprise security operations while progressively taking ownership of global security initiatives that improve operational efficiency and overall security maturity.
The IT Security Specialist works closely with global infrastructure and end-user computing teams to operate, optimize, and standardize security controls across the organization.
WHAT WILL YOU BE RESPONSIBLE FOR?
Enterprise Security Operations
Support daily security operations across the entire security stack, including:
Microsoft Defender XDR (Endpoint, Identity, Cloud Apps, Email and Collaboration), Entra ID, Conditional Access, MFA, PIM, and Identity Governance
Intune device compliance, endpoint protection, and policy troubleshooting
Monitor, investigate, and respond to security alerts via the Microsoft 365 Defender portal.
Assist with configuration, tuning, and optimization of security controls to reduce alert noise and improve detection quality.
Security Automation, Incident Response & Continuous Improvement
Design, implement, and maintain automated detection and response actions for security events.
Leverage Microsoft Advanced Hunting, alert-based automation, and automated investigation and remediation (AIR) to reduce manual triage and response time.
Partner with Incident Response and Infrastructure teams to ensure automated actions balance rapid response with business and operational impact.
Continuously tune detections, automation logic, and response workflows to improve accuracy, reduce noise, and enhance security maturity.
Use
PowerShell, KQL, Microsoft Graph API , or similar technologies to improve security operations, reporting, and visibility.
Vulnerability & Patch Management
Design, implement, and operate a global vulnerability and patch management program.
Establish remediation expectations and timelines based on risk and criticality.
Partner with system and application owners to drive vulnerability remediation and patch compliance.
Produce reporting and metrics to support operational tracking and executive-level visibility.
Cloud and On-Prem Network Security
Monitor, and audit network firewalls deployed globally.
Configure, monitor, and optimize
Cloudflare
security services, including WAF, DDoS protection, and Zero Trust capabilities.
Backup, Resilience & Ransomware Readiness
Act as a Security Subject Matter Expert for enterprise backup platforms.
Evaluate and improve backup integrity, recovery readiness, and ransomware resilience.
Support hardened backup configurations and integration with incident response and recovery playbooks.
Governance, Compliance & Documentation
Support compliance initiatives such as
PCI DSS , including control understanding, evidence collection, and remediation activities.
Contribute to security standards, procedures, and policies
Review audit findings and risk assessments to help prioritize remediation efforts.
REQUIREMENTS?
2+ years of experience in an
IT Security
focused role.
Hands-on experience with technologies such as
Microsoft Defender Suite, Entra ID, Azure, and Microsoft 365 Security .
Solid understanding of identity security fundamentals including MFA, Conditional Access, privileged access, and zero trust.
Working knowledge of basic networking, endpoint security technologies, and cloud security fundamentals.
Strong written and verbal communication skills, with the ability to document technical concepts clearly for diverse audiences.
PREFERRED REQUIREMENTS
Experience operating within a
Microsoft XDR / Microsoft 365 Security
environment.
Familiarity with
Cloudflare
(WAF, DDoS protection).
Exposure to security and compliance frameworks such as
PCI DSS, NIST CSF, CIS Benchmarks, or ISO 27001 .
Experience with vulnerability management and patching tools such as
Defender Vulnerability Management, Intune, and Azure Arc .
Experiencing managing a large scale global enterprise backup environment.
Scripting or automation experience with
PowerShell, KQL, Microsoft Graph API, Python
or similar technologies.
WHAT'S IN AN OFFER?
As a colleague at Scandinavian Tobacco Group, you will receive a comprehensive compensation package as a generous benefits package.
• Comprehensive Health Care, Vision & Dental Plan
• Flexible Spending Account
• Disability Plans
• Basic & Supplemental Life Insurance
• Additional Supplemental Benefits
• Paid Vacation, Paid Time Off (PTO) days, Holidays
• 401(k) Retirement Saving Plan including a generous Company match
Our company uses E-Verify to confirm the employment eligibility of all newly hired employees. To learn more about E-Verify, including your rights and responsibilities, please visit www.e-verify.gov.
*Please be informed that this Direct Search is conducted exclusively by the Scandinavian Tobacco Group. We do not accept applications from agencies, and we will not provide compensation for unsolicited CVs.
**This position does not offer Visa sponsorship. Candidates must have valid work authorization in the United States and only qualified candidates will be contacted.
If you are currently working in STG, please click on Emloyee Login to apply to our internal positions
Bethlehem, Pennsylvania, 18015,
IT Security Specialist
ABOUT THE ROLE...
We are seeking an IT Security Specialist with a strong focus on the
Microsoft security ecosystem
to join our global IT Security & Governance team. This role supports daily enterprise security operations while progressively taking ownership of global security initiatives that improve operational efficiency and overall security maturity.
The IT Security Specialist works closely with global infrastructure and end-user computing teams to operate, optimize, and standardize security controls across the organization.
WHAT WILL YOU BE RESPONSIBLE FOR?
Enterprise Security Operations
Support daily security operations across the entire security stack, including:
Microsoft Defender XDR (Endpoint, Identity, Cloud Apps, Email and Collaboration), Entra ID, Conditional Access, MFA, PIM, and Identity Governance
Intune device compliance, endpoint protection, and policy troubleshooting
Monitor, investigate, and respond to security alerts via the Microsoft 365 Defender portal.
Assist with configuration, tuning, and optimization of security controls to reduce alert noise and improve detection quality.
Security Automation, Incident Response & Continuous Improvement
Design, implement, and maintain automated detection and response actions for security events.
Leverage Microsoft Advanced Hunting, alert-based automation, and automated investigation and remediation (AIR) to reduce manual triage and response time.
Partner with Incident Response and Infrastructure teams to ensure automated actions balance rapid response with business and operational impact.
Continuously tune detections, automation logic, and response workflows to improve accuracy, reduce noise, and enhance security maturity.
Use
PowerShell, KQL, Microsoft Graph API , or similar technologies to improve security operations, reporting, and visibility.
Vulnerability & Patch Management
Design, implement, and operate a global vulnerability and patch management program.
Establish remediation expectations and timelines based on risk and criticality.
Partner with system and application owners to drive vulnerability remediation and patch compliance.
Produce reporting and metrics to support operational tracking and executive-level visibility.
Cloud and On-Prem Network Security
Monitor, and audit network firewalls deployed globally.
Configure, monitor, and optimize
Cloudflare
security services, including WAF, DDoS protection, and Zero Trust capabilities.
Backup, Resilience & Ransomware Readiness
Act as a Security Subject Matter Expert for enterprise backup platforms.
Evaluate and improve backup integrity, recovery readiness, and ransomware resilience.
Support hardened backup configurations and integration with incident response and recovery playbooks.
Governance, Compliance & Documentation
Support compliance initiatives such as
PCI DSS , including control understanding, evidence collection, and remediation activities.
Contribute to security standards, procedures, and policies
Review audit findings and risk assessments to help prioritize remediation efforts.
REQUIREMENTS?
2+ years of experience in an
IT Security
focused role.
Hands-on experience with technologies such as
Microsoft Defender Suite, Entra ID, Azure, and Microsoft 365 Security .
Solid understanding of identity security fundamentals including MFA, Conditional Access, privileged access, and zero trust.
Working knowledge of basic networking, endpoint security technologies, and cloud security fundamentals.
Strong written and verbal communication skills, with the ability to document technical concepts clearly for diverse audiences.
PREFERRED REQUIREMENTS
Experience operating within a
Microsoft XDR / Microsoft 365 Security
environment.
Familiarity with
Cloudflare
(WAF, DDoS protection).
Exposure to security and compliance frameworks such as
PCI DSS, NIST CSF, CIS Benchmarks, or ISO 27001 .
Experience with vulnerability management and patching tools such as
Defender Vulnerability Management, Intune, and Azure Arc .
Experiencing managing a large scale global enterprise backup environment.
Scripting or automation experience with
PowerShell, KQL, Microsoft Graph API, Python
or similar technologies.
WHAT'S IN AN OFFER?
As a colleague at Scandinavian Tobacco Group, you will receive a comprehensive compensation package as a generous benefits package.
• Comprehensive Health Care, Vision & Dental Plan
• Flexible Spending Account
• Disability Plans
• Basic & Supplemental Life Insurance
• Additional Supplemental Benefits
• Paid Vacation, Paid Time Off (PTO) days, Holidays
• 401(k) Retirement Saving Plan including a generous Company match
Our company uses E-Verify to confirm the employment eligibility of all newly hired employees. To learn more about E-Verify, including your rights and responsibilities, please visit www.e-verify.gov.
*Please be informed that this Direct Search is conducted exclusively by the Scandinavian Tobacco Group. We do not accept applications from agencies, and we will not provide compensation for unsolicited CVs.
**This position does not offer Visa sponsorship. Candidates must have valid work authorization in the United States and only qualified candidates will be contacted.
If you are currently working in STG, please click on Emloyee Login to apply to our internal positions