America's Job Portal
β’ Oversee daily SOC operations, including alert monitoring, triage, escalation, and incident tracking.
β’ Lead and mentor SOC analysts, providing guidance on investigations, threat analysis, and response actions.
β’ Ensure incidents are handled in accordance with SLAs, escalation matrices, and established security procedures.
β’ Review and validate incident tickets, case notes, and closure details for completeness and accuracy.
β’ Coordinate with internal teams and external vendors during security incidents and major outages.
β’ Monitor SOC tools, firewall, email security, and other security platforms for suspicious activity.
β’ Improve SOC processes, detection rules, playbooks, and reporting to increase efficiency and response quality.
β’ Prepare and present operational metrics, incident trends, and security reports to management.
β’ Support incident response activities, including containment, investigation, remediation, and post-incident rev...