Role Proficiency :
Monitor cyber security alerts for our global customers in a 24x7x365 operations team under minimal supervision of Team Lead.
Mentor junior members of the team as well as assist the Team Lead in supervision.
Mentor junior members of the team to help them learn and achieve their full potential.
Respond independently to low and medium complexity incidents
Assist the Team Lead in supervisory activities leading to a high-performance organisation.
Under the overall supervision of Team Lead ensure that cyber security alerts from the SIEM and multiple sources are dealt with by the entire team within SLA.
Communicate and escalate as per defined process.
Train and motivate the team to follow documented playbook.
Assist the Team Lead in ensuring quality of service across the team.
Review and recommend topics for inclusion or upgrade in the playbook as well as new Use Cases or the refinement of existing ones.
Adherence to defined SOC processes including housekeeping tasks. Adherence to the Information Security policies as defined by the company and customer.
Measures of Outcomes :
Innovation : Case Studies and value delivered to customer / Cyberproof.
Team adherence to SLA as agreed with the customer.
Productivity (Number of alerts addressed)
Quality - Percent of tickets that met quality norms
Adhere to process Nil NC during audits
Evidence of skill development including training certification etc.
Outputs Expected :
Cyber Security Monitoring :
Work in accordance with the Playbook under supervision of the team lead to monitor alerts in the CDC Platform / SIEM Tool etc.
Ensure appropriate response in line with the SLA.
Cyber Security Incident Management :
Process alerts through analysis triage and resolution.
Communication and escalation as per defined process
Documentation including annotation in CDC / SIEM work log to ensure audit trail as per defined standards and quality requirements.
Team Player :
Assist the team lead in ensuring Continuous Learning as well as in delivering on innovation and optimization
Mentor junior team members where possible.
Assist Team Lead in generation of required reports management information and analytics.
Other Responsibilities :
Ensure that the housekeeping tasks are performed
Undertake activities for example quality checks reviews etc. to ensure that the team as a whole are performing to standard requirements
Stand in for the team lead when required at customer meetings etc.
Assist in achieving near zero false-positives etc.
Skill Examples :
High proficiency in the use of CDC SIEM and other relevant tools
Skill to review and recommend Play Book improvements Use Case Refinements New Use Cases Process Improvements etc.
Excellent logical problem-solving ability and analytical skills for incident triage and analysis
Excellent oral and writ