Description
As a SecOps Technician, you will be a core part of the Security Operations Center (SOC), responsible for monitoring security tools, triaging alerts, and escalating actionable threats. Your primary mission is to support daily security operations and ensure rapid, consistent response to suspicious activity and potential cyber incidents. This is a hands-on, tool-driven role primarily focused on real-time detection and response-not policy or governance.
Essential Duties:
• Monitor alerts from SIEM, EDR, email, firewall, and DNS security tools
• Triage and validate security events to determine severity and next steps
• Investigate and remediate alerts; escalate high-impact
• Maintain situational awareness of current threats and active incidents
• Track and update tickets for ongoing incidents and investigations
• Perform health checks and daily reviews of security platforms
• Assist in updating detection rules and tuning false positives in security too...