Job Descriptions1. Security device management & Operation
- Lead and support on build & deploy security infrastructure, deploy and transfer to operation - Monitoring and initial response to potentially-malicious or anomalous activity based on event data (log files and alerts) from EDR, IPS, Firewall,Proxy, WAF, DDoS, SIEM and other sources
- Support Incident Handling leader in resolving all cyber incident cases
2. Initial threat analysis
- Perform initial triage on incoming cyber incidents and issue trouble tickets to Incident handling team
- Coordinate with AIS Threat analyst or Threat hunting team
3. Access management
- Administer the Identity Management, Access Control system, Privilege Management system and Data Loss Prevention system
- Manage the workflow within IAM including access provisioning, compliance, access management
4. VPN consolidation Co-ordination