1 of 1 Permanent SIEM Jobs in Inverclyde

Responsibilities: Conducting escalated triage & analysis on security events identified by Tier 1 Analysts, determining threat severity & advising on initial response actions. Applying expertise in SIEM solutions utilizing Kusto Query Language (KQL), to perform log analysis, event correlation, & thorough documentation of security incidents. Identifying & escalating critical threats to Tier 3 Analysts … . Coordinating with Tier 3 Analysts & management to refine detection & response workflows, contributing to continuous SOC maturity. Collaborating with Tier 3 Analysts on tuning SIEM & detection tools to reduce false positives & improve alert fidelity, submitting tuning requests & testing configurations. Identifying gaps in current detection content & working with Senior Analysts to … how traffic flows within a network. Advanced knowledge of Windows & Linux operating environments, including standard commands, file systems, & user authentication mechanisms. Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms. Able to demonstrate proficient More ❯