Ict Security Ops Analyst.
CurrentAs the primary point of contact for security incidents, I closely monitor events from various SOC channels, including SIEM and SOAR, tickets (Service Now), and emails. I am experienced in responding to and resolving incidents related to phishing campaigns, compromised accounts, malware, and data loss, while strictly adhering to the Ministry's ICT Security strategy, guidelines, and processes.My role also involves:● Escalating issues as needed.● Implementing system hardening measures to reduce the "attack surface".● Conducting risk assessments in endpoints and other systems.● Collaborating with users to integrate their needs into existing or new security solutions and platforms.● Staying up-to-date with new cyber threats and proposing relevant countermeasures for the Ministry.● Developing and delivering awareness campaigns, including tailored training and scenarios for business users.● Investigating breaches and incidents using top cloud solutions such as Microsoft Azure, Sentinel, and Defender.● Reviewing processes to ensure security compliance and protect business information and privacy.● Coordinating with various Ministry vendors to ensure timely results and rigorous security standards.Accomplishments:● Successfully educating business users on the importance of security and encouraging them to adopt best practices, by translating complex security information into simple and appropriate language.● Effectively managing internal changes within the Ministry, including the implementation of cloud solutions and being part of the 1st official SOC team.