Responding to alerts within the SIEM tool
Working with Customers to configure host IDS / IPS policies.
Assisting with the on-boarding of new customers and log sources
Development of SIEM rules
Performing analysis of log files
Ensuring customer SLA’s are met in relation to incident response and remediation.
Ensuring the accurate and full completion of the SOC Status Checks and that any issues arising as a result of the checks or during the shift are recorded and managed.
Troubleshooting monitoring system issues.
Reviewing Customer reports to ensure quality and accuracy