Security Operations

• Monitor security alerts and events from SIEM, firewalls, intrusion detection systems (IDS), and other security tools.
• Investigate potential security incidents, analyze logs, and determine their impact and severity.
• Respond to cybersecurity threats by following incident response procedures and escalating as needed.
• Perform threat intelligence analysis to identify emerging threats and vulnerabilities.
• Conduct forensic analysis on compromised systems and provide remediation recommendations.
• Develop and fine-tune SIEM rules, correlation policies, and security playbooks.

SOC Analyst

SecOps Engineer, Identity Operations Tech Lead