Salah Farghly

Cyber Security EngineerFull Time

• Job Details:Responsibilities and duties: Develop and create use cases on SIEM, Investigating alerts escalated from SOC analysts and tuning rules Work closely with the Engineering Implementation team during initial phases of onboarding new clients to understand the client environment (Business requirements, architecture, technologies, threats, gap and risk). Continuous assessment of tickets for potential enhancement of the overall automated analysis, auto closure and escalation. Review and confirm pre-tickets raising/escalations Take full ownership and track suspicious/malicious activities across all clients Track and ensure that escalated service requests from any of the assigned SOC unit clients are handled within SLA. Track daily client’s activity trends by reviewing SOC metric and perform necessary actions (fine tuning, deep investigations & analysis, etc..) Join weekly client calls to deliver updates and track outstanding action items. Take ownership of performing required fine tuning on SIEM. Identify any missing security use cases required (Added, Created, etc…)

SOC Analyst tier 2Full Time