Your influential mission. You will...
- Support, maintain and operate security infrastructure and technologies used by SOC and make recommendations to enhance threat detection
- Build up and improve real-time security monitoring and incident response framework and playbooks
- Develop security detection use cases, tune signatures and refine analytical models in order to identify malicious activity
- Maintain, tune and troubleshoot SIEM Solution to deliver optimal performance and best detection and investigation capabilities
- Identify new data sources and integrate them into monitoring operations
- Evaluate and implement new information security tools and technologies in support of SOC needs
- Provide analysis and trending of security events, alarms, and information from a large number of heterogeneous security devices and critical environments
- Participate in knowledge sharing with other analysts and improve incident response documentation
- Provide Incident Response (IR) investigation, support and triage to security alerts