Continuous Monitoring and Analysis of Security Events: Monitor security events across all systems using SIEM tools to detect and respond to potential security threats. Analyze logs, network traffic, and system behaviour to identify unusual or suspicious activities. Implement and maintain real-time monitoring and alerting mechanisms for timely detection of security incidents Threat Hunting and Incident Investigation: Conduct proactive threat hunting to identify advanced threats and potential vulnerabilities within the organisations systems. Investigate security incidents, perform root cause analysis, and develop mitigation strategies to prevent future occurrences. Collaborate with the SOC team to ensure timely and effective incident response and documentation. Vulnerability Assessments and Penetration Testing: Perform regular vulnerability assessments to identify potential weaknesses in the organisations infrastructure, applications, and network. Conduct penetration testing to simulate attacks and evaluate the effectiveness of current security measures. Provide detailed reports on findings and recommend remediation strategies to strengthen security posture. Security Policy Review and Enhancement: Review and update security policies regularly to ensure they align with industry best practices and emerging threats. Collaborate with key stakeholders to implement necessary changes to security protocols and procedures. Ensure security policies are consistently enforced across all systems and that personnel are trained on current practices. Collaboration with the Cybersecurity/Network Specialist on Advanced Security Issues: Work closely with the Cybersecurity/Network Specialist to address advanced security challenges, including complex incidents and infrastructure vulnerabilities. Assist in the development and implementation of advanced security solutions to protect against evolving threats. Provide input on network security architecture and improvements based on threat intelligence and investigation outcomes.