Cyber Security OT Engineer Hitachi Energy

SOC Monitoring & Incident Response

• Perform continuous monitoring of security events from SIEM, EDR/XDR, network, security controls and other devices

• Investigate alerts related to malware, ransomware, phishing, lateral movement, privilege escalation, and data exfiltration

• Correlate endpoint, network, authentication, DNS, firewall, and proxy logs to identify multi-stage attacks

• Execute incident triage, analysis, evidence collection, and containment recommendations

• Document incidents, maintain timelines, and escalate based on severity and SLA

• Tune alerts to reduce false positives and improve detection accuracy

• Map alerts and incidents to the MITRE ATT&CK framework

• Support shift handovers, major incidents, and SOC readiness activities

• Vulnerability Monitoring

• Analyze vulnerability scan results and identify high-risk and exploitable vulnerabilities

• Perform risk-based prioritization using exploitability, exposure, and threat intelligence

• Support remediation tracking and validating fixes through research and log verification

• Hands-on experience with:

• SIEM, SOAR, PAM, Endpoint Security, Patch Management, Firewall, 2FA

• Strong understanding of:

• MITRE ATT&CK framework

• Cyber Kill Chain / attack lifecycle

• Threat hunting / modeling

• SOC Playbook implementation

• CVE analysis and CVSS scoring

• Incident response lifecycle

• Experience working in 24x7 SOC environments

• Strong security investigation, technical documentation, and incident reporting skills