انتهت صلاحية هذا الإعلان الوظيفي
انتهت بتاريخ ١٠ أبريل ٢٠٢٦
وصف الوظيفة
Perform advanced monitoring, analysis, and investigation of security alerts and incidents. Act as an escalation point for complex incidents and support L1/L2 analysts. Lead incident response activities including containment, eradication, recovery, and root cause analysis. Conduct threat hunting and fine-tune SIEM use cases.
المسؤوليات
- Monitoring, analysis, and investigation of security alerts
- Lead incident response activities and root cause analysis
- Conduct threat hunting by analyzing logs and network traffic
- Fine-tune SIEM use cases and detection rules
- Coordinate with IT teams for remediation activities
- Support vulnerability management and risk assessments
المؤهلات
- 5+ years of experience in cybersecurity operations or SOC roles
- Strong understanding of MITRE ATT&CK framework
- Experience with SIEM platforms (Splunk, QRadar, Sentinel, ArcSight)