Evaluate network infrastructure vulnerabilities to enhance capabilities being developed.
Monitor external data sources (e.g., cyber defense vendor sites, Computer Emergency Response Teams, Security Focus) to maintain currency of cyber defense threat condition and determine which security issues may have an impact on the enterprise.
Correlate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.
Manage protective or corrective measures when a cybersecurity incident or vulnerability is discovered.
Create interactive learning exercises to create an effective learning environment
Coordinate with team members to manage and administer the updating of rules and signatures (e.g., intrusion detection/protection systems, antivirus, and content blacklists) for specialized cyber defense applications.
Communicate new developments, breakthroughs, challenges and lessons learned to Management, and internal and external customers.
Continuously validate the SOC against policies/guidelines/procedures/regulations/laws to ensure compliance.
Simple body text this will replace with orginal content