Detect, document, respond to and escalate events and incidents in accordance with OT SOC Incident Handling policies and procedures.
Demonstrate capabilities and techniques that can be used to mitigate Cyber-attacks and threats.
Demonstrate the capability to utilize the Security Tools to investigate and correlate events.
Develop reports and/or briefings for events/incidents.
Conduct research on emerging security threats.
Maintain shift logs for all conducted SOC activities during scheduled hours.
Monitor, maintain, and respond to email.
Create tickets for necessary tasks that needs to be executed by external teams. Ensure the tasks are communicated via email to the respectable team(s), as well as documenting and tracking activities within tickets according to ticketing procedures, as well as annotating shift logs according shift report procedures.
Conduct systems and tools health checks.
Recommend wiki and update with relevant content as it becomes known.
Ensure that the phones are forwarded to the On-Call or appropriate individual when no one is in the office