-
Corp-Corp
-
W2-Permanent
-
W2-Contract
-
Contract to Hire
-
UG :- - Not Required
-
PG :- - Not Required
-
No of position :- ( 1 )
-
Post :- 28th Sep 2024
- Standard 3 days on site, more as required
- Travel occasionally for 0-2 nights
- Maintain documentation
- Support enterprise logging and analysis solutions
- Analyze Log files for suspicious activity
- Analyze event data for suspicious patterns
- Analyze log sources, assess threats, and define alerting criteria
- Develop log policies by creating rules, setting thresholds, and prioritizing alerts based on impact and urgency
- Work with IR Engineering to configure data ingestion, detection rules, and fine-tune detection
- Work with CIRT to configure incident creation, explore opportunities to enrich incident data, and assign incidents to CIRT teams
- Review policies regularly, address false positives/negatives, and stay updated on technology
- Data extraction
- Reporting