• Administer and monitor the (SIEM) system, analyze logs and alerts, and respond to security incidents promptly.
• Assist in maintaining secure configurations for systems and applications, ensuring compliance with security policies and best practices.
• Manage endpoint security solutions, including EDR & IPS to protect against malware and unauthorized access.
• Conduct regular vulnerability assessments to identify security weaknesses.
• Deploy, manage, and monitor honeypot systems & thread intelligence.
• Utilize monitoring tools to proactively monitor infrastructure and network devices.
• Monitor and analyze audit logs for regulatory compliance and security purposes.
• Configure and monitor (NGFW) to enhance network security and protect against advanced threats.
• Researching information security standards based on business strategies and requirements.
• Generate reports on vulnerability assessment findings, security incidents, and system performance.
Bachelor's degree in Computer Science, Information Technology, or related field.Proven hands-on network engineering experience.2-4 years of experience in information security or related role.Relevant certifications (e.g., Security+, CEH) are preferred.Familiarity with SIEM systems, endpoint security solutions, vulnerability assessment tools, NGFW, and network monitoring tools.Understanding of security frameworks, regulations, and best practices.