Responsibilities include:
- Available to work on a 24x7 shift pattern.
- Act as first line of defense to identify, secure and react to pre-defined security alerts using run books.
- Assist in the response of high impact incidents, working with all internal stakeholders around the company.
- Stay up to date with the most recent threats and technologies in the Cybersecurity world and actively contribute in improving the processes and solutions in place.
- Ability to utilize tools like SIEM, Endpoint protection, Web application Firewalls, Data Loss prevention, etc
- Able to interpret Vulnerability Scans, security logs and identify risk patterns or breaches
- Identify, assess and remediate pre-documented low risk security events.
- Assist in automating security routines and event treatment using the available tools and scripting languages.
- Execute Runbooks and SOC procedures and contribute in improvements.
- Monitor security access and conduct security assessments to identify vulnerabilities and perform risk analysis
- Analyze the root cause of incidents working with SME s and application team
- Lead from the front being the First point of escalation for the team members
- Perform regular quality checks and help imporve the people, process and policty standards
Minimum Qualifications
- Minimum of 5+ years of relevant and related work experience.
- bachelors degree or equivalent, or equivalent years of relevant work experience.
- 2+ years of experience in handling SPlunk SIEM
- 2+ years of experience in EDR
