Soc Analyst
Monitor and analyze network, cloud, and endpoint log data across Windows, macOS & Linux devices, Firewalls, Microsoft 365 & Azure AD cloud events.Perform malware analysis and triage security events from Datto EDR, Bitdefender, Cylance, Webroot, Sophos, SentinelOne, Defender for Business, and more.Respond to generated incidents and isolate devices from the network for any malicious/unauthorized activity in a timely fashion.Perform in-depth investigation, triage for any indicators of compromise (IOC’s), etc.Analyze a variety of network and host-based security logs (Firewall, NIDS, HIDS, Sys Logs, Event Viewer, etc.)Produce high quality written and verbal communications, remedies, and findings to customers.Develop processes for incident detection and remediation.