Monitors alerting tools and also handles escalated incidents from Helpdesk,
Physical Security, Network Team and Customers.
• Triages alerts as they come in and action appropriately.
• Respond to common alerts in a consistent and repeatable manner from multiple
alerting sources.
• Responsible for triage of a variety of alerts stemming from C2 beaconing,
malware, or phishing attempts.
• Provide escalations of unknown threats to Level 2.
• Identify abnormal security events and trigger the call list / distribution list.
Source link
