Analyst, IT Security Operations, Information technology

Key Areas of Responsibilities

Ingest logs from all in-scope IT systems to SIEM (MS Sentinel
)Configure SIEM test cases / Machine Learning alerts in SIEM system
sFacilitate reviews of SIEM alerts with SOC team to detect security incidents and fine-tune log ingestion as require
dManage Endpoint Security, DLP solutions, Firewall configurations, and Web Proxy appliance
sConduct vulnerability assessments and assist in remediation effort
sReview Security Information and Event Management (SIEM) alerts to detect security incidents and conduct investigations if require
dIdentify gaps from security incidents and recommend control improve men
tMonitor industry cyber threat feeds and news and conduct appropriate analysis and follow-up action
sDevelop and maintain standard operating procedures for event monitoring and incident respons

e
Require men

ts
Graduate in Information Technology or relevant str
eam Should have min 3 years of exp in the field of Information secur
ity Strong understanding of security tools and techniques including SIEM, Log review, Endpoint Detection & Response (EDR), Application Whitelisting, Data leakage and Malware Analysis, Web-pr
oxy Strong understanding of cybersecurity concepts and incident management proces
ses Extensive theoretical and practical knowledge with Windows, Linux, and TCP/IP network
ing Scripting experience on any of the following Python/Perl/Bash/Power Shell could be an advant
age Industry Certifications and an educational background from Information Technol
ogy Preferably should understand Cloud Security principles and technolog
ies Ability to work and solve technical issues / problems independen
tlyGood verbal and written communication ski
lls Strong time management and organizational ski
lls Diligent, follow through and attention to the detail appro

ach