Information Security Analyst

Perform continuous monitoring and analysis of security alerts and logs from various security tools (SIEM, EDR, IDS/IPS, firewalls, DLP, etc.). Identify, investigate, and interpret anomalous activities, security events, and potential threats across our IT environment. Utilize threat intelligence feeds and frameworks (e.g., MITRE ATT&CK) to contextualize and prioritize security events. Conduct in-depth analysis of security incidents to determine scope, root cause, and potential impact. Perform initial malware analysis, network traffic analysis, and host-based forensics to gather evidence and understand attack methodology. Prioritize incidents based on severity, potential impact, and organizational risk. Execute incident response procedures, including containment, eradication, recovery, and post-incident activities. Assist in the configuration, tuning, and optimization of security monitoring tools to reduce false positives and enhance detection capabilities. Maintain accurate and detailed documentation of security incidents, investigations, and resolutions. Ability to conduct proactive threat hunting based on threat intelligence.