Creation of USE cases using MITRE framework, Dashboard and Reports on Splunk SIEM
Strong technical background on Network Security, Threat hunting and Risk based analysis
Analyzing Network traffic for IPS, WAF, Firewall, DDOS and other perimeter device.
Key Accountabilities
Continuous monitoring and review of security events, reports, alerts and CSOC dashboards to identify anomalous patterns indicative of potential security incidents
Responsible for timely and effective response to, and management of, incidents, events, notifications, calls and other activities related to CSOC including Root Cause Analysis
Gather relevant information and provide actionable intelligence on potential cyber security threats and incidents
Other Accountabilities
Take direction and guidance from InfoSec Management to build, support and update the CSOC playbooks/processes
Render support for the administration and configuration of security controls such as SIEM, Anti-virus software, network security devices, PAM, DLP, Vulnerability Management, etc.
Prepare security awareness messages, presentations and announcements for management, IT staff, and regular users
Participate in regular cyber drills and CSOC exercises
Education
Bachelor's degree in Computer Science or equivalent
