Your daily tasks:
Monitoring security telemetry and alerts across systems, endpoints, cloud and network infrastructure.
Investigating suspicious activities, triaging incidents and supporting containment and remediation actions.
Correlating logs, threat intel and behavioral signals to identify real threats and reduce noise.
Working closely with our external SOC to validate escalations, provide context and lead follow-up investigations.
Developing and tuning detection rules and use cases in SIEM and EDR platforms.
Supporting threat hunting and hypothesis-driven exploration of suspicious activity.
Participating in incident response lifecycle – documentation, RCA, lessons learned.
Collaborating with internal teams (IT, Cloud, Dev, Production) to strengthen defensive posture.
Maintaining detection playbooks, runbooks and response guides.
Techland S.A.
https://careers.smartrecruiters.com/TechlandSA