Job description

This role involves integrating data sources, analyzing logs, maintaining security compliance, and developing incident response and threat hunting frameworks. Required skills include experience in SecOps, Incident Response, Threat hunting, and SIEM tool implementation.

Responsibility

• Integrating data sources, analysing logs, writing/fine-tuning alerts, and maintaining security compliance across the infrastructure.
• Managing and implementing SIEM solutions for both on-premise and cloud architectures.
• Developing and optimising the incident response framework including process, playbooks, documentation.
• Developing and optimising threat hunting/Intelligence framework including process, playbooks, and documentation.
• Building automated frameworks to remediate threats without human intervention based on incident response policies.
• Effectively communicating with internal and external stakeholders to drive security operations roadmap.

Qualifications

• 5+ years of work experience in SecOps/Incident Response/Threat hunting (Blue Team)/SIEM tool implementation.
• Working knowledge of security technologies like EDR/Firewalls/Antivirus/SOAR.