cases (SIEM, ITSI, UBA, etc.) **➕**Bonus points for**: - Splunk certifications (Core Certified Power User, Admin...
with: OAuth, APIs, webhooks Event-driven systems / messaging queues Exposure to: Cybersecurity platforms (SIEM, identity...
in Crowdstrike (SIEM/SOAR). - Lead technical investigation of major incidents (P1/P2) and run threat hunting and purple teaming... Intune and Conditional Access on Entra ID. - SOC background: incident response, SIEM/SOAR (ideally CrowdStrike SIEM), MTTD...
experience with enterprise security solutions such as WAF, IPS, Anti-DDOS, and SIEM. - Demonstrated understanding what it means...
in Crowdstrike (SIEM/SOAR). - Lead technical investigation of major incidents (P1/P2) and run threat hunting and purple teaming... Intune and Conditional Access on Entra ID. - SOC background: incident response, SIEM/SOAR (ideally CrowdStrike SIEM), MTTD...
-driven systems / messaging queues - Exposure to: - Cybersecurity platforms (SIEM, identity tools, endpoint tools...
- Monitor and respond to security incidents. - Integrate SIEM and SOAR tools for automated threat detection and response...
policy updates - Support defensive capabilities by helping to design, configure, and tune detection tools (SIEM, EDR... - Experience in incident response, forensics, and defensive security operations (SIEM, EDR, monitoring, detection engineering...
, Automotive industry, etc. ResponsibilitiesMonitoring and defending the organization's infrastructure by managing SIEM, EDR/XDR... forensics, and offensive security.Certifications such as GCIH, GCFA, OSCP, CySA+.Proficiency in SIEM/SOAR platforms (Splunk...
. - Create and fine-tune SIEM alerts to minimize false positives and improve accuracy. - Collaborate with other security team...