Role Purpose

The Cyber Security Operations (SOC) Specialist is responsible for monitoring the bank’s security environment, performing SIEM alert triage and investigation, and coordinating incident response activities aligned with NIST SP 800‑61. The role also involves producing threat intelligence reports for senior leadership, including the CISO and risk committees, to support informed decision‑making and strengthen the organization’s security posture.

Key Responsibilities

SIEM Monitoring & Alert Triage

• Monitor and analyze security alerts using SIEM platforms such as Splunk, Microsoft Sentinel, and IBM QRadar.
• Perform alert triage, validation, and prioritization based on severity and business impact.
• Investigate suspicious login activities, malware detections, network anomalies, and data exfiltration indicators.
• Correlate events from logs, endpoints and network devices to identify potential threats.