Job Responsibilities:
- Lead the end-to-end incident response process, from initial alert detection through investigation to resolution and closure.
- Analyze and prioritize security alerts, ensuring timely and effective responses to potential security incidents.
- Conduct in-depth analysis of security alerts, identifying indicators of compromise (IoCs) and potential threats.
- Collaborate with other teams to validate and correlate security events, providing context to enhance incident understanding.
- Execute the closure of security incident cases, ensuring that all relevant information is documented for future reference.
- Collaborate with cross-functional teams to implement preventive measures and mitigations based on incident findings.
- Enhance access control posture and permissions.
- Administer and manage Microsoft Defender, ensuring optimal configuration for threat detection and response.
- Stay up-to-date of the latest threat landscape, implementing updates and configurations to enhance security posture.
- Stay informed about current cybersecurity threats, vulnerabilities, and industry best practices.
- Collaborate with the IT team to implement proactive measures to enhance the overall security posture.
- Participate in post-incident reviews, providing insights and recommendations for improving incident response processes.
- Continuously enhance the efficiency of security operations through automation and the implementation of new technologies.

Required Qualifications:
- Minimum 4 years of experience.
- BA degree in computer science, or any closely related field
- Proven experience in a Security Operations Center (SOC) role, with a focus on incident response and alert analysis.
- In-depth knowledge of the incident response lifecycle, including detection, analysis, containment, eradication, and recovery.
- Expertise in managing and configuring Microsoft Defender and other antivirus solutions for optimal security.
- Hands-on work on Microsoft compliance and Security centers.
- Familiarity with various security technologies, tools, and methodologies: Firewall security, network security, access control.
- Strong understanding of cybersecurity threats, vulnerabilities, and risk management.
- Excellent analytical and problem-solving skills with attention to detail.
- Proactive mindset with a commitment to continuous improvement.
- Ability to work well under pressure and make informed decisions during security incidents.
- Strong interpersonal and communication skills for effective collaboration within a team and across departments.
- Flexibility and adaptability to respond to evolving cybersecurity threats