• Actively monitors network, systems, and applications for unusual or suspicious activities
  • Reviews, investigates, and responds to security alerts generated by security tools used by Ethnos360
  • Analyzes logs from various IT Infrastructure and IT Application resources to detect potential security incidents or anomalies
  • Monitors network traffic for signs of unauthorized access, malware, or other threats
  • Identifies and classifies security incidents based on severity and potential impact
  • Executes predefined containment strategies to minimize damage during a security incident
  • Escalates more severe incidents for root cause analysis to understand attack vector, tactics, and objectives of an incident
  • Assists in removal of malware or other threats from infected systems and in restoring normal operations
  • Stays updated on latest cybersecurity threats and attack trends
  • Works with the IT Division to prioritize mitigation of identified vulnerabilities
  • Helps to enforce Ethnos360 cybersecurity policies and ensures compliance with approved frameworks
  • Assists in planned internal or external audits to ensure security controls are being well maintained
  • Participates in team meetings as required
  • Stays up to date with best practices
  • Participates in training and staff development activities
  • Maintains confidentiality of highly sensitive information
  • Performs other duties as assigned by the Cybersecurity and Compliance Officer