Auckland, Auckland, New Zealand
Cyber security professional with broad knowledge of Information Technology focused on Security Operation. • Strong technical savvy, eager to learn new skills and technologies with fast learning ability • Competence in concisely explaining problems, both verbally and in a written format • An effective team player with good communication and execution skills coupled with a systematic approach and quick adaptability
Working in Cyber Defence Operations Centre as a Cybersecurity Analyst L2, my daily job involves: * Providing guidance and mentoring to L1 Cybersecurity Analysts. * Handling escalated incident from L1 team or customers by using all available tools like EDR and SIEM. * Fine tuning and creating detection rules in SIEM such as Splunk and Sentinel. * Responding to customer queries, providing customer service that exceeds my customers’ expectations. * Bringing Operational Security Excellence to any threat hunting/identification, threat intel research, threat intel notifications, tuning identification, and identification of enrichment opportunities. * Providing recommendations on platform enhancements and how to improve cybersecurity services. * Incident, Change and Problem Management. * Collaboration meeting with customers regularly. * Daily Event/Incident/Ticket Reviews. * Ensuring documentation and the knowledgebase are kept up to date * Compiling and completing customer reporting. Tool set: * SIEM - Microsoft Sentinel, Splunk, CrowdStrike NG SIEM * EDR - Crowdstrike, Microsoft Defender * SOAR - Palo Alto XSOAR
Working in a small but tight-knit team, I’m responsible for every aspect of security services we provide to customers * New customer onboarding - Sentinel * Monitoring and triage of security alerts * Detection rules creation and fine tuning * Vulnerability scanning * Customer report * Threat Intelligence update to stakeholders * Knowledge sharing and mentoring junior colleagues. Tool set: * SIEM - Microsoft Sentinel * EDR - CrowdStrike * Phishing campaign / Security Awareness Training - Knowbe4 * Vulnerability Assessment - Tenable.io
As SOC Analyst, my daily job involves monitoring and analyzing activities on networks, servers, endpoints, databases, applications, websites, and other critical systems, looking for anomalous activity that could be indicative of a security incident or compromise. • Continuously monitors the customers security infrastructure via SIEM, EDR, SOAR etc • Triage’s security alerts • Triage’s data sources monitoring • Proposition of specific recommendations • Collects data and context necessary to initiate Level 2 escalation • Provide feedback to Level 2 for fine-tuning of detection use cases • Develop runbooks/procedures for handling of security monitoring alerts • Delivers scheduled and ad-hoc reports • Works closely with Level 2 & Level 3 team towards the continuous improvement of the service
Research, design and implement all IT infrastructure including 1 server and 24 workstations' configurations, management system choice, cabling and wireless network setup. Trouble-shooting all hardware and software issues. Face to face customer service including Microsoft Office suites, games, printing/scanning and etc.
Key responsibilities: • Managing and maintaining the web uploads, design and content that also includes Trademe and e-commerce websites and online ordering software • Trouble-shoot website, online ordering and POS software issues as they arise • Assist in the maintenance and support of internal software and IT infrastructure • Help store manager to do simple warehousing and customer service duties. • Supporting the wider team with planning and coordinating digital campaigns and platforms and assist in providing solutions to further our online presence and market share