该职位来源于猎聘 Responsibilioties

Work with SIEM and other security tools to identify, investigate, and respond to security incidents and breaches promptly.
Manage security tools and technologies to ensure the safeguarding of the organization.
Fine-tune Microsoft Defender XDR/Sentinel to improve detection accuracy and minimize false positives.
Assist in the development and updating of security policies and procedures based on operational experience and emerging threats.
Recommend and implement changes to improve incident response procedures based on review findings.
Stay updated on the latest developments in Microsoft security tools and technologies.
Continuously improve security processes, incident response strategies, and detection capabilities

Qualifications

Bachelor's or Master's degree in Computer Science, Information Technology, or a related field.
1.5+ years of experience in the cybersecurity domain.
Certifications such as CompTIA Security+, CSA, Azure Security Engineer Associate, or similar are preferred but not mandatory. Knowledge & Experience
Strong understanding of cybersecurity principles, threat detection, and incident response.
Hands-on experience with SIEM tools, endpoint protection, and IPS/IDS (preferably Microsoft Security stack like Microsoft Sentinel, Defender XDR).
Understanding of computer networking concepts and protocols (e.g., TCP/IP, DNS) and network security methodologies.
Ability to work with Azure Active Directory, Azure Firewall, and other Microsoft security services. Personal Attributes
Results-driven, high-energy, and self-motivated
Capable of working effectively with minimal supervision.
Excellent verbal and written communication skills.
Skilled in working within a team-oriented, collaborative environment.
Strong problem-solving and analytical abilities.
Adept at managing multiple competing priorities.
Able to meet tight deadlines.