1. Monitor and analyze security events using SIEM tools (e.g., Microsoft Sentinel, Qradar)
2. Investigate and respond to security alerts and incidents
3. Implement and monitor OT security controls (network segmentation, ICS security, access control)
4. Perform regular security updates to mitigate security vulnerabilities and keep endpoint updated to improve.
5. Manage identity and access control (Active Directory, Azure AD, MFA, Conditional Access)
6. Support audit and compliance activities (ISO27001, AEO, SOX)
7. Manage endpoint security solutions (EDR/XDR, Antivirus, BitLocker, DLP)

