1. Handling all alerts - SIEM, IPS/IDS solutions, EDR. The Resource is expected to monitor, investigate, respond to, and resolve these alerts.
2. Resolving general support requests - device control, URL whitelisting, lockouts, etc.
3. Completing daily checklists and preparation and sending daily reports.
4. Monitoring patching status and responding to patch failures by either redeploying the patch manually or escalating to the relevant teams.
5. Monitoring vulnerability scans, reviewing the reports, and parsing through these to remove false alarms.
6. Documenting the response and resolution of alerts and tickets.
7. Creating exclusions/detection lists to reduce false alarms.
Interspence Solutions was established in August 2017 and is a company that provides IT consulting and support services within the manufacturing and process industry. Interspence has entered into a long-term contract with a major US-based oil & gas company to provide skilled IT resources and services under the direction of their IT leadership team. The company is transforming its business on the back of heavy investments in technology around real-time data capture, Big Data platforms, in-memory databases, analytical engines, and elastic search services. There is also a significant push towards mobility with the majority of the applications being converted into mobile apps. The company is also looking at moving towards DevOps in the near future.