Roles

Roles are aligned with objectives.

You have to have:

1. 1. Management:

      1. Director is responsible for setting up Approach, Terms, Formalizations, Procedures, Team| Roles, Cooperation within cybersecurity team.

      2. Manager is responsible for hiring (firing) staff and making sure they get everything at the individual level to enable them in all roles available for them through role rotation.

   2. Security Analyst is responsible for 

      1. Cyber Defense/Breach Response capabilities by establishing, operating a function for preparing for, and execution of manual breach response with aim to cover up to 80% or relevant TTPs

      2. Reconnaissance/Analysis/Planning (RAP) capabilities by establishing and operating  a function of finding relevant breach types and TTPs, IT Discovery, modeling, threat management, vulnerability management, including Detection Engineering and Threat Hunting.

      3. Cyber Protection/Security Engineering capabilities by establishing and operating  a function of establishing and executing automatic breach response through disruption and denial options against relevant TTPs. It includes: cooperation with IT: patching, hardening. Design, deployment, run & maintain of security solutions and tools. IT Approach and architecture: Blue/Green, Data/Code split, IaC