Job Description
Responsibilities:
• Develop custom scripts to automate current detection and response workflows.
• Build pipelines to enrich logs and alert results to provide a comprehensive view for SOC analysts.
• Operate and help mature a SOC playbook, workflow automations and use cases.
• Implementation and configuration of the IRPs utilizing SOAR PBs.
• End to end implementation and configuration of SOAR as per customer demand.
• Reducing MTTD, MTTR, utilizing the CSOC security capabilities, to advance business SLA.
• Integrate SOAR with clients’ security controls, to efficiently use in-place technology capabilities.
• Should possess an understanding of different security technologies, technical infrastructures and APIs and an awareness of cyber threats remediation.
• Understanding of classic and emerging threat actor tactics, techniques, and procedures in both pre-exploitation and post-exploitation phases of the attack lifecycles
Job Requirements
null
