• Detailed Job Description –  

Investigating, documenting, and reporting on any information security (InfoSec) issues as well as emerging trends.

Notify Client of incident and required mitigation works.

              Understand the structure and the meaning of logs from different log sources such as FW, IDS, Windows DC, Cisco appliances, AV and antimalware software, email security etc.

              Fine-tune SIEM rules to reduce false positive and remove false negatives.

              Understand the incidents of CrowdStrike and Ad-hoc training for L1 analysis.

Perform threat intel research and vulnerability analysis.

              Ability to run and understand Sandbox Static Analysis.

              Should have expertise on TCP/IP network traffic and event log analysis.

              Configuration and Troubleshooting experience on CrowdStrike,ProofPoint LogRhythm,  and Rapid 7 would be an added advantage.

              Knowledge of ITIL disciplines such as Incident, Problem and Change Management.