Cyber Defense Engineer

Job Qualification

• Perform real-time monitoring of security alerts generated by CSOC tools
• Investigate potential security incidents, recognize attacks based on techniques, tactics and procedures and differentiates false positives from true intrusion attempts
• Perform investigation and in-depth analysis and validations of escalated security alerts based on TTPs and differentiate false positives from true intrusion attempts
• Perform triage, assist to remediate security incidents and track incidents from investigation to resolution
• Alert system and information owners of intrusions and potential intrusions and compromises to their network infrastructure
• Escalate security incidents to appropriate teams within KBank
• Maintain and provide data required to calculate the CSOC services' SLAs, KPIs and KRIs
• Improve the CSOC services continuously