Develop, document, and maintain security policies, procedures, guidelines and baselines for cloud and hybrid environments
Collaborate closely with the SoC team to analyse and fine-tune SIEM detection rules, correlation logic, and security policies to improve alert fidelity and suppress false positives
Collaborate closely with the Security Engineering team to continuously strengthen detection and response capabilities, contributing to regular reviews and iterative improvements to security monitoring and alerting workflows
Track and report on the effectiveness of security controls through periodic review and finetuning
Assist in developing risk assessment and security frameworks to support a comprehensive and consistent risk assessment methodology suited for cloud and hybrid environment
Assist in conducting in-depth security architecture reviews and threat modelling exercises for new and existing systems, systematically identifying attack surfaces, trust boundaries, and design-level weaknesses, and providing concrete, prioritised mitigation recommendations
Assist in performing structured risk assessments across infrastructure and application system for cloud and hybrid environments