Start Date
Immediate
Expiry Date
10 Aug, 25
Salary
5000.0
Posted On
10 May, 25
Experience
0 year(s) or above
Remote Job
Yes
Telecommute
Yes
Sponsor Visa
No
Skills
Threat Intelligence, Splunk, Sentinel, Qradar, It
Industry
Information Technology/IT
EXPERIENCE / REQUIREMENT :-
As a Cyber Security Engineer, your primary role will be, but are not limited to:
1) Incident Investigation
Investigate suspicious activity using SIEM, EDR, NDR, firewall and other logs.Use threat intelligence to enrich investigations and identity attacker tactics (MITRE attack, IOC/IOA correlation)
2) Incident response
Escalate critical incidents to L3 analysts or incident response teams.Participate in incident response planning and post mortems.
3) Use Case Tuning and Development
Help improve alert fidelity by tuning existing SIEM use cases (reduce false positives).Provide feedback to engineers on detection rule effectiveness.
4) Documentation and Reporting
Create and maintain incident reports, evidence logs, and case notes.Document playbooks or runbooks for repeatable tasks and incidents.
5) Mentoring and Collaboration
Assist in training and guiding L1 analysts.Collaborate with IT, threat intelligence, and other security teams.