Cyber Security Engineer

1. Advanced Operations & Threat Detection

• Lead advanced health checks and configuration reviews for deployed security tools (AV, EDR, XDR, PIM, PAM, DLP, DAM, etc.).
• Conduct proactive threat hunting to identify hidden, emerging, or sophisticated threats beyond standard alerts.
• Fine-tune correlation rules, use cases, and detection logic to reduce false positives and improve detection accuracy.

2. Incident Response & Escalation Management

• Act as the final escalation point for critical and major incidents, leading investigation and resolution.
• Own root cause analysis (RCA) and remediation plans for high-severity incidents in the ticketing tool (ITSM).
• Lead incident command during major security events, coordinating cross-functional response and decision-making.
• Review and approve closure of high-severity tickets, ensuring SLA and quality complian...