Key Responsibilities :

- Continuously monitor security information and event management (SIEM) systems for alerts and potential threats.

- Analyze security logs, network traffic, and other relevant data sources to identify and investigate suspicious activity.

- Correlate security events and identify potential attack vectors.

- Conduct in-depth threat research and analysis, including identifying threat actors, analyzing attack techniques, and understanding threat landscapes.

- Respond promptly to security incidents, including malware infections, data breaches, and denial-of-service attacks.

- Contain and mitigate the impact of security incidents.

- Investigate the root cause of security incidents and recommend corrective actions.

- Document incident response activities and maintain detailed records.

- Collect and analyze threat intelligence from various sources, including threat feeds, intelligence reports, and open-source information.

- Share threat intelligence with relevant teams across the organization.

- Stay abreast of the latest cyber threats, vulnerabilities, and attack techniques.

Security Awareness & Training :

- Contribute to security awareness programs by developing and delivering training materials to employees.

- Promote security best practices and educate employees on cybersecurity risks.

Required Skills & Experience :

- 3+ years of experience in cybersecurity, with a focus on threat intelligence, incident response, or security operations.

- Strong understanding of cybersecurity concepts, including threat actors, attack vectors, and mitigation techniques.

- Experience with SIEM systems (Splunk, SIEMonster, ArcSight).

- Experience with network traffic analysis tools (Wireshark).

- Strong analytical and problem-solving skills.

- Excellent written and verbal communication skills.

- Ability to work independently and as part of a team