DFIR Analyst

Key Responsibilities: Incident Detection and Response

• Monitor and analyze security alerts and events from multiple sources such as SIEM, intrusion detection/prevention systems, and endpoint security tools to identify potential security incidents.
• Respond to and investigate security incidents, including data breaches, ransomware attacks, insider threats, and system compromises.
• Coordinate and execute incident response actions to contain and mitigate the impact of security events.
• Perform initial triage by assessing the severity and impact of incidents and escalate as needed.