Security Operations Engineer

You will be responsible for various duties and responsibilities related to incident response and security operations. Some of the key responsibilities include: - Conducting initial triage and review of security incidents from internal and external sources - Handling incoming calls during evening shifts and routing non-security incidents to relevant teams - Collaborating with the Cyber Threat Prevention Team to improve processes and drive automation - Monitoring service availability and reliability across all security offerings - Finding opportunities for security rule tuning and assisting in improving operations runbooks - Partnering with the Automation team to automate response runbooks and enhance operational efficiency - Maintaining strong working relationships with IT, Security, third-party vendors, and business collaborators - Ensuring proper maintenance, monitoring, automation, and response procedures to meet security and availability objectives - Providing input on technology selection and participating in relevant training sessions to enhance security technology skills - Following all policies, rules, and regulations and performing additional duties as requested by management - Availability to work holidays and weekends as per shift assignments You should meet the following qualifications and requirements: - 0-3 years of experience in incident response, ideally within a Security Operations Center (SOC) - Hands-on experience in monitoring security alerts, performing initial triage, and analyzing incidents - Certifications such as Security Blue Team Level 2 (BTL1), CompTIA CySA+, or CompTIA Security+ are desirable - Associate's degree or equivalent experience in Cybersecurity, Computer Science, Information Technology, or a related field is preferred - Experience with Azure Sentinel and KQL (Kusto Query Language) is a plus - Familiarity with SIEM tools (such as Splunk, Azure Sentinel) for monitoring security events and performing basic log analysis - Ability to recognize and analyze basic Indicators of Compromise (IOCs) in network and endpoint logs - Strong attention to detail and vigilance when reviewing logs and alerts to identify security incidents - Ability to quickly learn and adapt to new security tools, processes, and technologies - Proficient in Microsoft Office Suite for documentation and communication - Effective verbal and written communication skills for incident reporting and collaborating with multi-functional teams - Strong problem-solving and logical reasoning abilities to solve security incidents and determine appropriate responses This is a summary description based on the Role Overview, Key Responsibilities, and Qualifications Required provided in the job description.,