Identify events for further investigation from reports and alerts from SIEM tools,
DLP Symantec tool monitoring, incident management L1/L2 support Document review and follow-up activities.
Support the Vulnerability management program
Track and record relevant vulnerabilities
Track patch remediation and installation
Track vulnerability assessment findings and remediation
Certifications in CEH, System administration or Networking are a must
Strong technical knowledge on the following:
Operating systems logs (Windows, Unix)
Database Logs (Sql, Oracle)
Security Devices logs (Intrusion Prevention System, Endpoint)
Network device logs (Firewalls, proxies, network equipment) Application Logs
Data Loss Prevention logs.