EHEALTH TECHNOLOGY SYSTEMS AND SOLUTIONS EXPERT

Key Responsibilities:

1. Security Monitoring & Incident Response

• Monitor security events from various tools, including SIEM, IDS/IPS, firewalls, and endpoint protection systems.
• Investigate and analyze incidents to determine root cause, impact, and mitigation steps.
• Coordinate incident response with IT, network, and application teams.

2. Threat Intelligence & Vulnerability Management

• Stay current on emerging cybersecurity threats, vulnerabilities, and attack vectors.
• Leverage threat intelligence feeds to assess risk to the organization.
• Conduct vulnerability assessments and prioritize remediation efforts based on risk severity.

3. Security Tool Management & Optimization

• Manage and fine-tune SOC tools including SIEM, EDR, IDS/IPS, and DLP systems.
• Optimize tool configurations to improve detection accuracy and reduce false positives.
• Evaluate and recommend new tools and technologies to enhance SOC capabilities.

4. Incident Documentation & Reporting

• Document all security incidents and response activities as per organizational standards.
• Generate detailed incident reports for stakeholders.
• Contribute to post-incident reviews and continuous improvement processes.

5. Security Awareness & Training

• Support the creation and delivery of cybersecurity awareness programs.
• Advise internal teams on cybersecurity best practices and compliance procedures.

Minimum Experience & Skills

• At least 5 years of experience in cybersecurity or information security, with a strong focus on security operations.
• Proficiency in SIEM tools (e.g., Splunk, QRadar, ArcSight), IDS/IPS, endpoint security, and other cybersecurity platforms.
• Deep understanding of networking, protocols, and security architecture.
• Hands-on experience with incident response frameworks (e.g., NIST, SANS).
• Strong analytical, troubleshooting, and communication skills.

Preferred Certifications

CISSP, GIAC, CompTIA Security+, or equivalent certifications are highly desirable.