Have solid understanding on reviewing SIEM logs or Security Events from devices such as Firewall, IDS / IPS, Proxy, Antivirus, DLP, EDR, Email Security, Syslog etc.
Have strong knowledge and experience in Security Incidents and troubleshooting on Security Incidents.
Strong understanding of IT operations: help desk, end-point management, and server management
Strong understanding of adversary motivations: cybercrime, cyber hacktivism, cyber war, cyber espionage
Strong understanding of vulnerability management, threat analysis, security auditing, security monitoring, penetration testing, incident response and other information security practices is preferred
Knowledge of generic information security standards/programs and frameworks as well as best practices
If you are interested, please drop your cv