Job Description
Responsibilities:
- Identify and exploit vulnerabilities in network systems, applications, and infrastructure.
- Conduct in-depth investigations of security alerts escalated from Tier 1 analysts.
- Analyze complex incidents, identifying root causes and potential impacts.
- Utilize threat intelligence feeds and tools to research and track emerging threats.
- Perform threat hunting to proactively identify and mitigate potential attacks.
- Contain and mitigate identified threats according to established incident response procedures.
- Document investigations, findings, and actions taken in a clear and concise manner.
- Collaborate with other SOC team members, IT teams, and external stakeholders.
- Stay up-to-date on the latest cyber security threats and vulnerabilities.
- Contribute to the continuous improvement of detection and response processes.
Required Skills and Experience:
- 2+ years of experience in a security operations center (SOC) or similar role.
- Strong understanding of cybersecurity concepts and principles.
- Proficient in SIEM, IDS/IPS, and other security tools.
- Excellent analytical and problem-solving skills.
- Ability to work independently and as part of a team.
- Strong communication and documentation skills.
- Knowledge of incident response frameworks and best practices.
- Security certifications such as Security+, CISSP, or CCNA Security preferred