Description
The Incident Manager/Security Analyst tasks include:
1) To monitor internal and external threat intelligence feeds, categorizes and classifies the relevant events and if required triggers internal procedures;
2) Is an actor in the incident response process in case of security alerts (provides expertise);
3) Is an actor in forensic analysis process (researches malware, suspicious activity, identifies artefacts on compromised systems);
4) Is an actor in the vulnerability management/penetration testing process (analyses reported vulnerabilities, categorizes and classifies the relevant findings, and follow up on remediation actions);
5) Actively develops internal software and scripts to support the team in automating and/or managing above tasks.