1. Security tools management

• Manage and maintaining security tools and technologies deployed within the SOC, specifically Trellix and Elastic.. This includes configuring and fine-tuning security systems, managing access controls, updating signature databases, and ensuring the proper functioning of security devices. Experience in programming languages and scripting languages such as PowerShell and Bash would be an advantage

2. Vulnerability management

• Collaborate with other teams, such as system administrators and network engineers, to identify and remediate vulnerabilities within the organization's infrastructure.
• Perform vulnerability assessments, conduct penetration testing, and assist in patch management processes to minimize the organization's exposure to potential security risks.

3. Threat intelligence

• Stay updated on the latest security threats, vulnerabilities, and attack techniques.
• Collect and analyse threat intelligence from various sources to understand emerging threats and adapt security measures accordingly.

4. Continuous improvement

•  Stay current with industry trends, emerging threats, and best practices in SOC operations and cybersecurity.
• Assess and implement new tools, technologies, and processes to improve the effectiveness of the organization's SOC.

5. SOC Training and development

• Participate in a comprehensive training and development plan that is created in collaboration with the team lead and manager

6. Security awareness training

• Participate in security awareness training to stay up to date on the latest security threats and trends.