Monitor, analyze, record and document security events from the SIEM as well as from other sources to identify security incidents.
Tune and maintain security monitoring tools, including but not limited to SIEM platform regarding log sources onboarding, log parsing and interpretation, rules / alerts / reports definition, SIEM static data management (assets, networks etc.
Follow-up and tune-up false positives alerts together with the responsible system owner. Automate resource-intensive security monitoring and incident response tasks...
Minimum Bachelor Degree in Computer Science and minimum of 2 year industry related experience in computer security and incident response
Good experience in security monitoring (SIEM) including analyzing and triaging of security events from various sources. Experience in responding to security incidents
Knowledge of and hands-on experience with state of the art incident response and forensics tools, techniques and tactics.
Experienced in capturing memory, disk images and network traffic and analyzing them for indica-tors of compromise