We are looking for a Security Managed Services Practitiones to join our security team. This role focuses on detecting and triaging security events to help protect our systems and data.
Key Responsibilities:
-
Monitor and triage security alerts generated by the SIEM platform and respond to incidents via ticketing system.
-
Perform initial analysis, validation, and classification of security events and potential threats.
-
Execute basic incident response actions following documented runbooks and playbooks.
-
Conduct foundational investigation of network, endpoint, and system activity (e.g., IPs, ports, protocols, logs).
-
Escalate confirmed or high-risk incidents to Level 2 analysts with clear documentation and evidence.
-
Maintain accurate and timely ticket updates, including findings, actions taken, and recommendations.
-
Support continuous improvement by identifying false positives, tuning opportunities, and documentation gaps.
-
Adhere to SLAs, operational procedures, and compliance requirements.