Cybersecurity and Digital Trust Analyst KEO International Consultants

Responsibilities

JOB SUMMARY 

The Cybersecurity and Digital Trust Analyst is a hands-on security operations role at the heart of KEO's cloud-first, Microsoft-centric security posture. This is not a passive monitoring role the Analyst actively hunts threats, analyses security events, responds to incidents, and drives measurable improvement in KEO's security resilience across all platforms and geographies. Operating within and continuously strengthening KEO's zero-trust architecture, CSPM framework, and Digital Trust governance model, the role embeds a security-first culture across the organization and contributes to AI-driven security operations as part of KEO's ongoing digital transformation.

KEY TASKS AND RESPONSIBILITIES

Security Operations & Threat Detection

• Operate and continuously tune Microsoft Sentinel (SIEM), building and refining detection rules, KQL analytics queries, and automated SOAR response playbooks to ensure real-time threat visibility, rapid incident triage, and reduced mean time to respond (MTTR) across cloud, endpoint, identity, and network layers.
• Conduct proactive threat hunting across KEO's Azure and Microsoft 365 environments, identifying indicators of compromise and attack patterns before they escalate.

• Produce regular security operations reports, threat intelligence summaries, and dashboard insights for IT leadership.

Identity, Access & Zero-Trust Governance

• Administer and continuously improve KEO's identity and access management framework using Microsoft Entra ID, ensuring MFA enforcement, conditional access policies, privileged identity management (PIM), and zero-trust network architecture are correctly configured, monitored, and maintained.
• Apply and audit least-privilege, RBAC, and zero-trust principles across all systems and user populations, conducting regular access reviews, entitlement audits, and certification campaigns to identify and remediate excessive or inappropriate access.

Cloud Security Posture Management (CSPM)

• Continuously assess KEO's cloud security posture using Microsoft Defender for Cloud, identifying and prioritizing misconfigurations, vulnerabilities, and compliance gaps, and driving timely remediation in collaboration with the platform engineering team.

• Maintain and improve secure configuration baselines for Microsoft Azure, Microsoft 365, SharePoint, and Autodesk Construction Cloud in line with CIS benchmarks and Microsoft security best practices, ensuring all certified digital platforms consistently meet their respective security and compliance standards.

Vulnerability Management & Patch Compliance

• Operate KEO's vulnerability management programme using Microsoft Defender Vulnerability Management, identifying, assessing, and prioritizing vulnerabilities across endpoints, servers, and cloud workloads, and tracking patch compliance levels globally with escalation and coordinated remediation across platform and workplace teams.

• Perform regular security assessments of infrastructure, applications, and configurations, providing actionable remediation recommendations.

Governance, Compliance & Audit Support

• Support independent audits of KEO's access control and governance frameworks, maintaining accurate security documentation including policies, standards, risk registers, and control evidence and contributing to the development and review of cybersecurity policies that reflect current threats and regulatory requirements.
• Support IT risk assessment activities and assist with the maintenance and testing of BCP and DR procedures from a security perspective.

Collaboration & Stakeholder Engagement

Work closely with platform engineering, digital workplace, and enterprise digital solutions teams to ensure security is embedded by design across all IT initiatives, acting as a trusted advisor to business stakeholders and participating in CAB meetings to provide security assessment and sign-off for technology changes.

span>JOB-SPECIFIC COMPETENCIES /strong> /span>

• Strong analytical and investigative mindset - able to identify patterns, anomalies, and threats across large volumes of security telemetry.
• Hands-on technical proficiency with Microsoft Sentinel, Microsoft Defender suite, Entra ID, and Azure security services.
• Working knowledge of KQL (Kusto Query Language) for security analytics, threat hunting, and detection rule authoring.
• Solid understanding of zero-trust architecture principles and their practical application in a cloud-first environment.
• Proactive and self-motivated: takes initiative in identifying and addressing security gaps without waiting to be directed.
• Detail-oriented and process-disciplined, with strong documentation habits and a commitment to evidence-based operations.
• Collaborative team player who contributes to a positive, knowledge-sharing team culture.
• Continuous learner: actively keeps pace with the evolving threat landscape, new attack techniques, and emerging security tooling.