တိုင်ကြားမှု အောင်မြင်ပါသည်

Key Responsibilities

• Lead and oversee end-to-end security incident detection, analysis, and response across enterprise environments, ensuring timely and effective mitigation of threats.
• Continuously monitor and analyze alerts generated from SIEM, EDR, IDS/IPS, and other security platforms to identify and prioritize potential security incidents.
• Conduct advanced threat hunting activities to proactively identify hidden, emerging, or previously undetected threats within the organization’s infrastructure.
• Investigate and respond to complex security incidents, including malware outbreaks, phishing attacks, lateral movement, and potential data exfiltration scenarios.
• Design, develop, and optimize SIEM correlation rules, detection use cases, and dashboards to improve detection accuracy and operational efficiency.
• Perform root cause analysis (RCA) and produce comprehensive incident reports with clear findings and actionable remediation recommendations.
• Integrate and operationalize threat intelligence feeds to enhance detection capabilities and improve situational awareness.
• Continuously enhance SOC processes, playbooks, and incident response procedures to align with evolving threat landscapes and best practices.
• Provide mentorship and technical guidance to junior SOC analysts, fostering skill development and knowledge sharing within the team.
• Participate in 24x7 SOC operations, including on-call support and escalation handling for critical security incidents.
• Evaluate, recommend, and implement new security tools and technologies to continuously improve SOC capabilities.
• Prepare and deliver security reports, metrics, and KPIs to management and clients, providing clear insights into security posture and incident trends.

Knowledge & Skills Essential

• Strong understanding of Security Operations Center (SOC) processes, including monitoring, triage, investigation, and incident response.
• Hands-on experience with SIEM platforms and detection use case development.
• Practical experience with EDR/XDR, IDS/IPS, and firewall technologies.
• Proven ability to perform log analysis across network, endpoint, and cloud environments.
• Familiarity with MITRE ATT&CK framework and modern threat detection techniques.
• Experience in threat hunting and incident response operations.
• Ability to develop and tune detection rules and queries
• Strong analytical thinking and problem-solving skills.
• Ability to manage high-severity incidents in a fast-paced environment.
• Demonstrated capability to mentor and support junior analysts.
• Strong analytical and problem-solving skills
• Good communication and reporting skills
• Ability to handle high-severity incidents under pressure