Professional Documents
Culture Documents
IT Operation & Planning Team Scope
IT Operation & Planning Team Scope
IT Operation & Planning Team Scope
Email Security
SOC Sandbox
EMS
CrowdStrike
Azure
Oracle
Systems Valnaribiltes.
Internet, VPNs and MPLS connections
Datacenter ACs
Incidents Report
UPS
erations Team Responsibility
Details
1-Monitoring DNS Valnaribiltes
1-Monitoring
2-Release
3-Enhance Rules & False Positve khaled
1-Check alerts
2-Enhance Rules mohamed
1-Monitoring
2-Take necessary actions according SOPs ahmed
1-Check alerts
2-Take necessary actions according SOPs
3-Enhance Rules mohamed
1-Monitor threats detection
2-Follow up till case closed mohamed
1-Monitoring azure machines for Valnaribiltes
1-Monitoring Oracle machines for Valnaribiltes
1-Check Classifier
2-Check Email Health (from & header from)
3-Check IP Address
4-Check URLs
5-Check Attachment
6-3-Check (DMARC &SPF &DKIM &Composite authentication)
If all Checks clean ,Release it andIf it was repeated enhance rules to throw it automatically
1-Checking all alert‘s in FGT By Monitoring (Top Vulnerable Endpoint Devices by Detected Vulnerabilities)
2-IF any endpoint have Vulnerabilities ( Critical Risk)
3-checked it in (FGT & EMS)
4- IF detected issue Escalted it to security team
1-Monitoring link( state &usage) in forigate& SolarWinds
2-Checking status at site
3-IF detected issue Escalted it to( Network & security team)
1-Monitoring Health ( CPU&Memory )and Performance and availability of all (switches&Routers&AP ) on SolarWinds and
fortigate.
2-Follwing up alerts from SolarWinds Escleted issue to Network
1-Monitoring Health ( CPU&Memory ) and Performance and availability of VOIP Call Manager on Solarwinds
2-Follwing up IP Phone Issue and solved it