Job
Description
You will be leading a team of security analysts through an 8-hour rotational shift schedule, conducting real-time security monitoring and responding to incidents across various networks using a variety of tools and methodologies. Your role will involve maintaining support for the group's infrastructure to ensure service levels meet expectations. Additionally, you will be responsible for developing and managing Security Information and Event Management (SIEM) use cases, identifying and documenting incidents through proactive threat hunting procedures, and executing vulnerability assessments within the company's network infrastructure. Collaboration with stakeholders to mitigate identified risks will be a key aspect of your responsibilities. Furthermore, you will design and refine the Incident Response Playbook for improved reaction protocols, conduct thorough post-incident analyses to enhance and fine-tune the company's incident response processes, and scout for innovative control measures and solutions to bolster security. Your active involvement in offering innovative suggestions to advance the performance of the company's IT services will be crucial. As a member of the Global IT team, you are expected to promptly address incidents and service requests in accordance with established Service Level Agreements (SLAs) and provide technical support for the company's security infrastructure, including SIEM, VPN, Antivirus, Endpoint Detection & Response (EDR), and Endpoint Management Systems. You should possess a strong understanding of Windows/macOS operating systems, including knowledge of Event Viewer logs, device encryption, and Windows Registry. Knowledge of integrating devices with Azure Active Directory, managing device enrollment with Microsoft Intune, and configuring Microsoft Defender for endpoint protection is necessary for this role. Monitoring and managing security incidents for the company's headquarters and subsidiary companies, using creative problem-solving skills during security incidents and alert investigations with a preference for expertise in threat hunting and proactive analysis, will also be part of your responsibilities. Additional tasks may include generating monthly vulnerability reports, conducting ticket hygiene checks, and fostering process improvements. --- **Qualifications Required:** - Experience in leading a security operations team and conducting real-time security monitoring - Proficiency in Security Information and Event Management (SIEM) use cases development and management - Strong knowledge of vulnerability assessments and incident response processes - Familiarity with Windows/macOS operating systems, Azure Active Directory, and Microsoft Intune - Ability to analyze security incidents and undertake proactive threat hunting --- **Additional Company Details:** The critical success factors for this role include successfully resolving security incidents, infrastructure support, and service requests within SLAs, as well as contributing to improving processes, systems, and services provided by the company's IT.,
