About the Role
The candidate will serve as the first line of defense in identifying and escalating cybersecurity incidents. Responsibilities include continuous monitoring of security alerts, initial triage of potential threats, and following defined procedures to ensure timely response and documentation.
Responsibilities
- Monitor security event management systems around the clock
- Identify and categorize potential security incidents
- Perform initial analysis of alerts and anomalies
- Escalate confirmed incidents to higher-tier analysts
- Document all security events in the incident tracking system
- Follow standard operating procedures for incident response
- Maintain up-to-date knowledge of threat intelligence
- Collaborate with IT and security teams during investigations
- Support the creation and refinement of detection rules
- Participate in on-call rotations as required
- Respond to alerts within defined service level agreements
- Verify the accuracy of security tool configurations
- Track and report on security incident trends
- Assist in vulnerability scanning coordination
- Conduct basic log analysis for suspicious activity
- Report on daily security operations metrics
- Support compliance with security policies
- Engage in regular training exercises
- Contribute to post-incident reviews
- Maintain confidentiality of sensitive data
- Use secure communication channels for reporting
- Follow escalation paths during critical events
- Update runbooks based on operational feedback
- Assist in integrating new data sources into monitoring platforms
- Ensure consistent application of security baselines
Nice to Have
- CompTIA Security+ certification
- Certified SOC Analyst (CSA) credential
- Experience with cloud platforms like AWS or Azure
- Familiarity with MITRE ATT&CK framework
- Knowledge of endpoint detection tools like CrowdStrike
- Hands-on experience with packet analysis tools
- Understanding of zero trust security models
- Prior experience in a 24/7 operations center
- Exposure to threat hunting concepts
- Completion of cybersecurity simulation exercises
Compensation
Competitive salary based on experience
Work Arrangement
Hybrid work model with flexible scheduling
Team
Part of a dedicated cybersecurity operations team
What We Offer
- Opportunities for professional development and certification support
- Access to advanced security tools and training environments
- Collaborative team culture focused on knowledge sharing
Work Environment
- Modern security operations center with real-time monitoring capabilities
- Rotational shifts to ensure 24/7 coverage
- Secure and monitored workspace
Available for qualified candidates
