Job Description
Job Purpose
To work as first line of defense in cybersecurity, monitor security events in real-time ensure the systems remain secure from potential cyber threats.
Duties and Responsibilities
- Monitor security tools (SIEM, IDS/IPS, firewalls, endpoint solutions) for suspicious activities and potential threats.
- Analyze and triage security alerts to determine their severity and validity.
- Respond to security incidents, containing and mitigating threats effectively.
- Conduct forensic investigations to determine the cause and scope of incidents.
- Create and maintain detailed incident reports for documentation and review.
- Identify and address vulnerabilities within the IT infrastructure.
- Research emerging cyber threats and update defenses accordingly.
- Collaborate with IT and cybersecurity teams to implement best practices.
- Assist in developing and refining incident response playbooks and procedures.
- Stay updated on the latest security technologies and attack methods.
