Employer Active
Supervising security operation center and incident response team and monitor the SLA
• Serve as the recognized advisor in areas that may include incident handling, event analysis and correlation, general SIEM skills, IDS/IPS and log monitoring, Managed Security Services, and threat management
• Grow and retain knowledge of business operations and unique risk factors to inform on key decisions with regard to security incident handling, including, but not limited to, when to invoke Incident Response services
• Participate as a stakeholder and contributor in the decision process as to when to declare an official data breach to the public in times when such a decision point must be made
• Analyze data associated to a security incident, perform deep inspection of application, log, OS, disk, network level forensic analysis for troubleshooting and researching events and alerts, discover and identify its source, purpose, intent, and if malicious or abnormal, then escalate within the incident response procedures
Full Time