Information Security Officer - Cyber Security Analyst - Incident Responder - Soc Analyst
Current♦ Conduct core information security activities: Security Information & Event Management (SIEM), Threat Intelligence, Vulnerability Management, Education & Awareness, Malware Detection, Incident Response, Network Monitoring and Log Analysis.♦ Monitor and analyze Security Information and Event Management (SIEM) logs and alerts through QRadar-Splunk and identify security incidents for remediation and investigation.♦ Recognize potential, successful, and unsuccessful intrusion attempts and… Show more ♦ Conduct core information security activities: Security Information & Event Management (SIEM), Threat Intelligence, Vulnerability Management, Education & Awareness, Malware Detection, Incident Response, Network Monitoring and Log Analysis.♦ Monitor and analyze Security Information and Event Management (SIEM) logs and alerts through QRadar-Splunk and identify security incidents for remediation and investigation.♦ Recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information from security tools and technologies to develop IDS/IPS, Firewall and SIEM rules.♦ Analyze phishing incidents, develop phishing/vishing scenarios and contribute to the administration of phishing assessment program, including deploying assessments and report generation.♦ Analyze malware and virus attacks incidents and find details of the infected Windows hosts, identify indicators of compromise (IOCs), prepare incident reports to determine impact and scope of the malicious activities and recovery of the system and data.♦ Imitate tactics and techniques used by modern attackers, including common network and software exploitation to analyze potential threats. Show less