Job Description
About the role
The ideal candidate will have experience in monitoring, analyzing, and responding to security events across enterprise environments. They should be skilled in incident triage, investigating alerts using SIEM and XDR tools, and ensuring timely detection and escalation of threats. A strong understanding of incident response, hands‑on SOC experience, and the ability to work effectively in a fast‑paced environment.
Responsibilities
- Monitor security events and alerts across the enterprise environment on a 24/7 basis
- Analyze and validate incidents generated from SIEM and Security tools.
- Perform Initial triage, including false positive/false negative analysis
- Investigate logs and security data to identify threats and root causes
- Perform security event analysis and investigation across Windows and Unix systems
- Classify and prioritize incidents based on severity and business impact