Monitor and respond to security alerts and incidents using SIEM and other tools
Monitor threat feeds and advisories from CERT, NIST, and vendor sources
Write abuse cases and detection logic where requires.
Document findings, incidents, and prepare regular security reports
Assist in vulnerability assessments and remediation tracking
Support endpoint protection, firewall management, and access control systems
Conduct routine audits of systems and networks for compliance and security gaps
Review access logs and permissions for compliance with least privilege principles
Collaborate with IT and DevOps teams to ensure secure configurations and deployments
Stay current with emerging threats, vulnerabilities, and mitigation strategies
Help maintain and update security policies, procedures, and documentation
Help organize phishing simulations and awareness campaigns
Provide basic guidance to staff on secure practices and policies
Familiarity with security tools (e.g., antivirus, firewalls, SIEM, vulnerability scanners)
Good understanding of networking, OS (Windows/Linux), and cloud platforms
Knowledge of common security frameworks and controls