Surge Global is a digital consultancy that leverages marketing, data, and technology to help businesses grow. As Sri Lanka’s leading digital firm, we employ the best content, creative, design, and engineering talent the country has to offer.

Embracing a culture of transparency and equality in the workplace, we’ve built an environment that helps Sri Lanka’s best marketing and creative talent thrive. Our team approaches complex, multivariate challenges with an open mind and a strong willingness to continuously test, learn, and innovate.

With our headquarters in Colombo, Sri Lanka, we support and scale startups to Fortune 500 companies across the United States, Europe, Australia, Middle East, Papua New Guinea, Fiji, and Sri Lanka.

Responsibilities:

• Implement, maintain, and support security solutions across cloud (AWS, Azure, GCP) and on-premise environments.
• Monitor and manage security infrastructure including firewalls, endpoint protection, IDS/IPS, WAF, and access control systems.
• Support security operations through continuous monitoring, alert investigation, incident response, and remediation activities.
• Assist in threat detection, threat hunting, and vulnerability management initiatives to identify and mitigate security risks.
• Configure and optimize SIEM and security monitoring tools, including log analysis and alert tuning.
• Conduct vulnerability assessments and coordinate remediation activities with internal teams.
• Support implementation of security controls within DevOps and CI/CD environments following DevSecOps best practices.
• Assist in security reviews, risk assessments, and penetration testing activities.
• Maintain and enforce security hardening standards, policies, and best practices aligned with industry frameworks such as ISO 27001, NIST, and CIS.
• Participate in incident investigations and support root cause analysis during security events.
• Collaborate with infrastructure, development, and operations teams to enhance the organization’s security posture.
• Support compliance initiatives, audits, and documentation related to security controls and governance requirements.
• Stay updated on emerging cybersecurity threats, vulnerabilities, and security technologies.
• Document security procedures, configurations, and operational activities.

Requirements:

• Bachelor’s degree in Cyber Security, Information Technology, Computer Science, or a related field.
• 2–4+ years of hands-on experience in cybersecurity, security operations, or security engineering.
• Good understanding of cloud security concepts across AWS, Azure, and/or GCP.
• Experience working with SIEM platforms such as Splunk, Microsoft Sentinel, QRadar, or similar tools.
• Hands-on experience with endpoint security solutions, firewalls, IDS/IPS, EDR/XDR, and vulnerability management tools.
• Understanding of networking concepts, protocols, and common security controls.
• Familiarity with identity and access management (IAM) principles and access control mechanisms.
• Experience with vulnerability management tools such as Nessus, Qualys, or similar platforms.
• Basic scripting or automation knowledge using Python, PowerShell, or Bash is an added advantage.
• Exposure to DevSecOps practices, CI/CD pipelines, container security, or Kubernetes security is preferred.
• Familiarity with security standards and frameworks such as ISO 27001, NIST, and CIS benchmarks.
• Basic understanding of incident response and threat analysis processes.
• Relevant certifications such as Security+, CEH, SC-200, AZ-500, or equivalent certifications are an added advantage.
• Strong analytical, troubleshooting, and problem-solving skills.
• Ability to work collaboratively in a fast-paced environment and manage multiple priorities.