Job Description
Working as part of a team monitoring and investigating security events so that potential attacks can be identified. Identifying suspicious and / or anomalous activities and taking appropriate actions. Perform detailed analysis of security logs to identify events, incidents and resolution. Managing security incidents through all phases of the incident response lifecycle from identification through to closure. Carrying out all activities in line with CDO policies and work instructions. Ensuring that all Security Monitoring Systems and Consoles are monitored diligently and in a timely fashion.
- Manage day-to-day activities regarding monitoring, escalation, and incident response
- Respond and incident manage cyber-attacks, malware, and active threat to reduce potential impact
- Ensuring all security and operational controls are followed and enforced to ensure client data remains secure, available, and private, where applicable
- Assist other teams with setting standards for and implementing event logging and monitoring tools and procedures
- Resolve or escalate events, threats and incidents per our specified procedures and processes
- Contributing to the development and continual improvement of methodologies, standards, tools and approaches for the team
- Takes ownership of own career, identifying technical and non-technical areas for improvement/development
- Managing own workload to ensure delivery to expected quality and timescales
- Maintains awareness of the changing threat landscape by participating in and sometimes contributing to relevant security groups, forums, or conferences