لم يعد يتم قبول المزيد من الطلبات لهذه الوظيفة
- Work as a part of the SOC team
- Operate as a first point of escalation for Tier 2.
- Hunt for suspicious anomalous activity based on data alerts or data outputs from various toolsets.
- Review and build new operational processes and procedures.
- Provide first-responder forensics analysis and investigation.
- Triage and resolve advanced vector attacks such as botnets and advanced persistent threats (APTs).
- Work directly with data asset owners and business response plan owners during low and medium severity incidents.
- Provide advice on the tuning of Security controls like proxy policy, in-line malware tools based on threat feeds, trust and reputation data, incidents, or vulnerabilities, and exploits of downstream systems.
- Develop SOC use cases, provide tuning recommendations to administrators based on findings during investigations or threat information reviews.