Security Operations Center Analyst
Current• Triage SIEM alerts to evaluate the relevance and urgency of cyber-attacks. Analyze Threat intelligence such as updated rules and indicators of compromise (IOCs) to pinpoint affected systems, type, and the extent of the attack. Review detailed forensics data from security technologies (firewall, IPS, EPO, etc.) to develop insights.• Review the latest security advisories to identify currently unknown security gaps.• Perform infrastructure and application VAPT to assess the resilience of the organisation and to isolate areas of weakness that need attention.• Perform security assessment/audit to comply with legal, ISO 27001 series, and other relevant security standards.• Manage and monitor privileged access on IT infrastructure.• Perform risk assessment and risk treatment aligned with ISO 27001 & ISO 22301.• Maintain SIEM, Zero Day, EDR, PAM, scanners, and other security tools used under SOC.• Prioritize action during isolation, analysis, and containment of an incident. Communicate any special requirements of the high-severity incident to the SOC lead.• Provide necessary training to personnel teams for implementation of new/modified, policies, procedures, and controls.• Carry out any other job related to information security as assigned by the Chief Information Security Officer (CISO).