Rhodian Group

• Monitor and triage security alerts generated by SIEM, EDR, and security monitoring tools • Investigate security incidents including phishing, malware, endpoint compromise, and unauthorized access • Perform root-cause analysis and document incident findings and remediation actions • Tune SIEM detection rules, alerts, and dashboards to reduce false positives and improve fidelity • Conduct threat hunting activities using logs from endpoints, networks, cloud platforms, and identity providers • Respond to security incidents in accordance with established incident response playbooks and SLAs • Escalate complex or high-risk incidents to Level 3 or Incident Response teams with detailed context and evidence • Assist with vulnerability management findings and validation of remediation • Support log ingestion, parsing, normalization, and retention requirements for SIEM platforms • Maintain accurate case notes, incident reports, and security documentation • Collaborate with IT, engineering, and security teams to improve overall security posture

• Perform internal, external, web application, and network penetration tests using industry-standard methodologies • Validate vulnerability scanner findings through manual testing and exploitation techniques • Conduct attack simulations and adversary emulation aligned to real-world threat scenarios • Lead vulnerability management lifecycle activities including prioritization, remediation validation, and risk acceptance • Identify false positives and confirm true security weaknesses through hands-on analysis • Develop and maintain penetration testing methodologies, playbooks, and reporting standards • Produce detailed penetration testing and vulnerability reports with risk ratings and remediation guidance • Collaborate with SOC, infrastructure, cloud, and application teams to remediate identified risks • Support red team and purple team exercises and threat modeling activities • Assist with security architecture reviews and secure design recommendations • Mentor Level 1 and Level 2 security engineers • Support compliance-driven testing requirements (SOC 2, ISO 27001, PCI DSS, NIST, CMMC)

• Responsible for the ongoing management of Network Operations including the processing of NOC and Networking incidents through our service now queue • Manage the daily management of the incident queues • Manage NOC Analyst and Network Engineer schedules (as applicable) • Develop processes to service customers with managed service tools • Handle all client service delivery issues • Ensure that agreed SLA (service level agreements)/OLA (operation level agreement) and Change Management standards are being held • Provide customers with Network management and monitoring, designs, validations, documentation of their Infrastructure environment as well as maintenance and updates for their multivendor infrastructures • Development of analyst and engineer skills through career ladder • Execution of weekly meetings and individual development meetings • Quarterly and annual performance reviews on reporting analysts • Work with other operational managers for ownership of Managed Services tools and directing staff on continual improvement and updates • Ensure technician adherence to company and IT policies and procedures • Execute proper methodologies to improve the change management process, reduce unscheduled downtime, and improve customers’ satisfaction • Analysis of existing customer network and cybersecurity landscape and providing recommendations to customers • Assessment, implementation, and support of projects regarding networking and Cybersecurity • Responsible for the internal documentation platform and the redesign to improve operations of internal staff.