Cloud And Network Security Consultan

EDR alert monitoring.
Performing TI based and hypothesis driven threat hunting oriented to SIEM logs.
Support the incident response team during major security incident with advance investigation skills.
Closely work with SOC team and be responsible for incident detection, triage, analysis and response.
Handle L2 and above level technical escalations from L1 Operations team and resolve within SLA.
Finetune of existing use case of SIEM to reduce false positive.
Perform and reviews tasks as identified in a daily task list.
Report Generation and Trend Analysis.
Walkthrough of the daily, weekly, and monthly SOC reports to the customer/stake holders.
Ready to work in 24x7 rotational shift model including night shift.
Identify the process and technology gaps and drive for closure.
Explore different technologies available in the security industry.
Analyse and tune threat monitoring dashboards.
Coordination with internal customers for their security related problems and providing solutions.
Create and manage various KEDBs the SOPs, runbooks, asset inventory with risk classification, critical application flow diagram, network flow diagram, privileged user list.
Mentor and monitor L1 team members for their daily activities.
Provide KT and required training to other team members.