Responsibilities

📍Investigate alerts, triage them, and come up with proper action items and remediation plans. 📍Perform host-based analysis and artifact analysis in support of security investigations and incident response. 📍Coordinate investigation, containment, and other response activities with business stakeholders and groups 📍Develop incident analysis and findings reports. 📍Work with security solutions owners to assess existing security solutions' ability to detect/mitigate an attacker TTPs. 📍Creating custom SIEM queries and dashboards to support the monitoring and detection of advanced TTPs against the company network.

Minimum Requirements

📍2+ years experience working in a Cyber Security Operations Center/Incident Response (in-house or outsourced) creating, escalating, and managing security incidents and creating incident reports. 📍Managing low to high-risk cybersecurity events, alerts, and incidents, event monitoring and analysis, and responding to and escalating IT/DevSecOps security events and threats and vulnerabilities. 📍Collaborating with stakeholders to drive incident response and remediation. 📍Development of common playbooks for most frequent or critical incident types.