Security Operations

• Investigate security events and alerts on XDR/SIEM and other key Security solutions as per the operating model
• Maintain and enhance security monitoring tools and technologies by working closely with the SIEM Detection Engineer
• Manage security incidents with goal to quickly contain them.
• Identify the scope, impact and engage relevant teams.
• Lead the root cause analysis for frequent and/or major security incidents.
• Develop and maintain IR documentation, including SOP, playbooks, and incident reports.
• Actively participate in drills to validate the effectiveness of incident response procedures.
• Collaborate with cross-functional teams to develop and implement incident response plans, including containment, eradication, and recovery strategies.
• Review and validate incident investigations and response actions done by managed service providers.
• Engage and drive relevant teams for mitigation of critical risks and threats.
• Conduct proactive threat hunting and document these hunts.
• Stay up-to-date with the latest security threats, vulnerabilities, attack tactics and techniques.

SOC Analyst

Security Operations Center Officer

Consultant ITO Security Operations

Security Monitoring Analyst

Senior Security Incident Response Engineer

IT Security & Resilience Chief Engineer, Security Monitoring