·
Respond to service issues,
problems, and critical situations to support resolution and minimize downtime
·
Enforce security policies and
procedures by administering and monitoring security controls
·
Support and manage access
(Provision/De-provision, Break-fix issues)
·
Prioritize and work on
Immediate and confidential terminations
·
Review security violation
reports and investigates possible security exceptions
·
Handle security events such
as Phishing & Spam emails, URL & Attachment Defense Alerts, Malware
Alert handling (Intrusion/Network based)
·
System performance issues and
Services/Folders Exceptions with Anti-malware
·
DL Tasks - Enabling External
DLs/contacts within a DL
·
O365 Alerts - Incident
Response
·
Maintain Incident, SR and
Events SLA by 95% and above
·
Reporting on Monitoring
Events and actions performed (Weekly/Monthly)
·
Well-versed with security
tools and handling events generated for Incident Response
·
Maintain technical knowledge
by attending educational workshops and reviewing publications
·
Demonstrated understanding of
information security concepts, standards, practices, including but not limited
to firewalls, intrusion prevention and detection, TCP/IP and related protocols,
device monitoring and log management and event monitoring/reporting
Experience and Skills Required:
·
Strong expertise in Incident
Response and Operations related to security
·
Good Knowledge on Active
Directory, Exchange and managing tools like Quest, Azure Security Centre
·
Strong knowledge on ITIL
processes like Incident, Problem & Change Management. ITIL V3 Foundation
certification will be given preference
·
Must have excellent
organization and technical documentation skills
·
Ability to organize projects
and tasks according to priorities, communicate effectively project plans and
status including escalating for when issues occur
·
Excellent customer service
including strong written and oral communication skills
V 0.0.1