Soc Analyst
Current- Threat Hunting using SIEM tools, creation of dashboards, and event correlation rules based on clients' needs;- Creation of Cybersecurity Playbooks based on NIST CSF, NIST Special Publication 800-61 for security use cases based on O365, network security, and sys-log events;- Automation of security processes and daily analysts' duties using programming script languages and SOAR, integration of security solutions with other different clients' systems;- Implementation of required processes for working with TheHive/Cortex, administration of TheHive SIRP, creation/implementation of Cortex Analyzers/Responders to advance IoC enrichment capabilities;