Manage network intrusion detection and prevention systems
Conduct periodic compromise assessments across selected networks and propose recommendations based on assessment results
Conduct physical security assessment of the organization’s systems, including servers and networks, ensuring that any unauthorized external physical interference is not possible
Conduct ongoing network hunt activities
Conduct proactive vulnerability assessment across the network, subnetworks, and service traffic to identify potential points of intrusion
Research and develop methods of tracking and detecting malicious activity within a network
Develop tools, signatures, and methods of detection for use in incident response activities
Develop SIEM integrations, dashboards, and analytics to illuminate and visualize threat activity
Analyze network traffic to provide timely detection, identification, and alerting...