職務内容：

SOC JD - E3.1 - 4+ years of experience in a multi tiered SOC/IR/MDR team Should have worked as a SOC lead Experienced with Technologies such as EDR, SIEM, SOAR, FW Deep understanding of attack trends and threat detection services Familiarity with security best practices and common emerging security threats Excellent written and oral communication skills in English Some degree of Python programming - An advantage Some degree of Malware Analysis - An advantage Hands-On experience with XSOAR or Cortex XDR - An advantageTo clearly understand the client's cybersecurity environment and respective product.To monitor, configure, and troubleshoot cybersecurity issues and related monitoring toolsTo analyse and validate cybersecurity incidents in-detail and help the L3 team with RCA/data or logs collectionTo enable knowledge transfer/trainings through creation/ maintenance of configuration documents, test plans, operational manuals and provide operational training to L1 team.To analyse and fine-tune cybersecurity policies, participate in cybersecurity review calls pertaining to change requests & recommendations on cybersecurity policy changes.To implement changes, monitor security device performance and implements performance tuning when necessary.To prepare analyses and reports to highlight the project progress/challenges and ensure quality and accuracy to the client

• To clearly understand the client's cybersecurity environment and respective product.
• To monitor, configure, and troubleshoot cybersecurity issues and related monitoring tools
• To analyse and validate cybersecurity incidents in-detail and help the L3 team with RCA/data or logs collection
• To enable knowledge transfer/trainings through creation/ maintenance of configuration documents, test plans, operational manuals and provide operational training to L1 team.
• To analyse and fine-tune cybersecurity policies, participate in cybersecurity review calls pertaining to change requests & recommendations on cybersecurity policy changes.
• To implement changes, monitor security device performance and implements performance tuning when necessary.
• To prepare analyses and reports to highlight the project progress/challenges and ensure quality and accuracy to the client