Address
Form of workLead the analysis and investigation of information security events (IDS/DLP/SIEM/etc.) in a 24x7 SOC environment to immediately detect verify and respond swiftly to cyber threats and remove false positive. Serve as a technical point of escalation. Responsible for investigating incidents analysing attack methods researching new defence techniques and tools developing security policy and documenting procedures for SOC. Maintain baselines for secure configuration and operations. Malware analysis and other attack analysis to extract indicators of compromise. Perform data security event correlation between various systems.
2
Prepare reports summaries and other forms of communication that may be both internal and client facing. Ensure compliance to SLA process adherence and process improvisation to achieve operational objectives. Develop and deploy processes to ensure efficient and effective Security Operations. Provide guidance and mentorship to other security analysts and junior members of the security team. Keep uptodate with the latest trends and best practice developments in the field of cybersecurity and SIEM tools
siem,soc,reports,process adherence,Security Operations,dlp,indicators of compromise,security team,data security event correlation,false positive,sla,information security,communication,siem tools,mentorship,cybersecurity,process improvisation,security policy,malware analysis,baselines,attack analysis,cyber security,ids,guidance,cyber threats
