Act as the Level 1 point of contact for all security incidents escalated from the outsourced SOC provider and internal teams, performing validation, follow‑up actions, and coordination for timely closure of tickets to maintain SLA.
Handle email security incidents including phishing, quarantine to ensure user verification, message trace checks, containment steps and follow‑up with SOC team if required.
Support and coordinate vulnerability management activities not limited to running scans, identify false positives, onboard and offboard managed assets to platform.
To support internal Apps, Network and server teams on compliance scans as per CIS standards and ensure false positives and non‑compliance settings are addressed.
Act as a liaison between the outsourced vulnerability service provider and internal teams to ensure consistent tracking and remediation of findings.