Responsibilities

Responsible to triage cyber security incidents as a member of Security
Operations Center incident responders’ team first line.

·
Continuously monitors the operating
systems alert queue; triages security alerts; monitors health of operating
systems security sensors and endpoints; collects data and context necessary to
escalate to Tier 2 Analyst.

·
Continuously monitoring the operating
systems alert queue using multiple tools, such as SIEM, EDR and custom-built
system monitoring tools.

·
Continuously monitors health of
operating systems security sensors.

·
Conduction initial triage of alerts to
identify potential, false positives, policy violations, intrusion attempts and
compromises on the system level.

·
Consolidating data from alert triag...