Soc Analyst
Current• Monitor and investigate security events, determine the nature of the event, document findings, and recommend remediation steps• Utilize SIEM to work through alerts created by custom rules prioritizing the order by highest severity prioritization mentality. • Recognize endpoint issues with using the EDR security tool take steps necessary to contain any malicious behavior then recommend additional steps to be completed to determine the root cause.• Examine Proofpoint alerts to ensure phishing emails do not impact end users. • Suggest additional mitigation actions from investigations through Jira and The Hive ticketing systems• Leverage Vulnerability scanners to identify and document vulnerabilities in the CNL environment.• Collaborate with SOC team to better protect the end users from potential malicious activity