Job Description

Responsibilities:

• Handling of all alerts - SIEM (Rapid 7 Insight IDR), IPS/IDS solutions (Darktrace and Forti SOC), EDR (Crowdstrike) the Resource is expected to monitor, investigate, respond, and resolve these alerts.
• Resolving general support requests - device control, URL whitelisting, lockouts, etc.
• Completion of daily checklists as well as preparation and sending of daily reports.
• Monitor patching status and respond to patch failures by either redeploying the patch or escalating to the relevant teams.
• Run Vulnerability scans, review the reports, and parse through these to remove false alarms.

Requirements:

• The individual is expected to be a graduate (Engineering preferred).
• 2 years of experience in IT security monitoring.
• Experience in working with Intrusion Detection/Prevention Systems is a must.
• Experience in Darktrace would be preferred.
• Experience working with a SIEM tool is a must.
• Experience in patch management and IBM BigFix would be an advantage.
• Experience with vulnerability scanners and their reporting management would be beneficial.
• Excellent verbal and written English is a must.