Senior Systems Engineer - SOC Operations (Cyber Ops & Technology)

Position OverviewThe SOC operations function is responsible for planning and overseeing monitoring and maintenance of security operations, providing direction and leadership to internal resources. The Operations Engineer provides expertise on security technologies and innovative security concepts and works toward enhancing the resilience of security operations. They coordinate ongoing reviews of existing security programs, protocols, and planned upgrades. They establish escalation processes for security incidents and develop contingency plans and disaster recovery procedures, focusing on policy implementation and control.Role & ResponsibilitiesConduct 24/7 continuous monitoring of security events and alerts using various security tools, such as SIEM and endpoint protectionPerform initial triage of security alerts to determine their validity and severity, identifying false positives or true positivesConduct basic investigations of security events, including malware infections and unauthorized access attemptsEscalate complex or highly suspicious alerts for further investigation and responseMaintain details records of all activities, including investigations performed, findings and remediation steps takenCollects data, evidence, and context necessary for further escalationAnalyze security logs, events and perform correlation and historical searches to determine the extent and impact of a security compromiseHandling case management, generating tickets and reports when required, and tracking open tickets until closureInvestigate and respond to security alerts escalated, performing root cause analysis, and providing remediation guidanceEscalate critical cases to incident response team and to provide support where needed.Prepare scheduled and ad-hoc reportsQuality assurance on cases handled and closed by junior SOC analystDevelop/strengthen playbook and process for case handling by the SOC teamAssist in identifying opportunities for tuning to improve detection accuracy and reduce false positivesWilling to work with 12 hours shift pattern that include weekend and public holidayRequirementsAt least 3 to 8 years' of experience working in SOC environment Strong knowledge and experience in SIEM tools, EDR, NDRStrong experience in SOC environment, monitoring security events and alerts on endpoint and networkMust be willing to work with 12 hours shift pattern that include weekend and public holidayStrong Interpersonal and communication skillsApply NowNOTE: It only takes a few minutes to apply for a meaningful career in HealthTech - GO FOR IT!!