Assist in monitoring security alerts and incidents using various security information and event management (SIEM) tools. Analyse alerts for potential threats and vulnerabilities.
Participate in incident triage by categorising and prioritising alerts based on severity and impact. Work with senior analysts to determine appropriate response actions.
Learn to operate and maintain security tools, such as intrusion detection systems (IDS), firewall logs, antivirus solutions, and endpoint detection and response (EDR) tools.
Assist in collecting, analysing, and interpreting security events and incidents data. Generate reports and dashboards for senior analysts and management.
Support the incident response process by documenting incident details, coordinating with relevant teams, and assisting in containing and eradicating security threats.
Contribute to creating and maintaining standard operating procedures (SOPs) and...