Autonomously carries out the Cyber Security team services which includes:
Work as part of 24/7 shifts Cyber Security team to monitor and analyse all Cyber Security Incident.
Generates Incident Report on case to case incident basis and escalates to the concern department for their action and ensures that prompt action taken appropriately
Follow and apply Incident Management process to ensure all incidents are addressed and closed in a timely manner.
Has advanced knowledge in Security Information and Event Management (SIEM) as it is one of the main security monitoring solutions used today.
Monitors and reviews Malware Statistics on daily basis.
Identify internal and external threat and response to security incident during attack
Responding to any security incident during attack and deliver root cause analysis.
Assessing the security impact of security alerts and traffic anomalies on customer networks.
Developing comprehensive security write-ups which articulate security issues, analysis and remediation techniques
Investigation of security incident to find root cause for policy violation, malware detection and exploit attempts.
Security Incident trend and Advanced Persistence Threats analysis.
Qualification & experience:
CyberSecurity, ISO 27001, ISO 20000 experience, SIEM solutions , CISSP,CISM background
Has knowledge in multiple IT Security Technology (Firewall, IDS/IPS, Anti-virus, Splunk).
Has worked as part of Security Operation Center previously.
Has CEH, CCNA Security, GSEC, GCIH