We are looking for a highly skilled SOC Analyst with 5–10 years of experience in network and security operations to support advanced L2/L3 security operations and projects. The role involves monitoring, analyzing, and responding to security incidents to ensure the protection of critical systems.
Key Responsibilities:Analyze alerts and log data to assess severity and prioritize incidents effectively. Monitor and investigate security events using SIEM tools, preferably Microsoft Sentinel. Conduct thorough incident investigations, collaborating with clients to determine scope, impact, and root cause. Execute rapid containment and remediation actions following predefined response strategies. Enhance Security Playbooks and refine SIEM detection rules to improve accuracy and reduce false positives. Support vulnerability assessments and penetration testing, prioritizing remediation efforts with clients. Maintain detailed incident records and prepare comprehensive security reports. Research and present new security concepts to internal teams and clients.
Required Skills & Qualifications:Expertise in Windows, Linux, Microsoft Azure, and Office365 environments. Strong knowledge of security technologies, including SIEM, EDR (Microsoft Defender), firewalls, VPNs, proxies, authentication mechanisms, encryption, and IPS/IDS. Solid understanding of networking principles (TCP/IP, LAN/WAN, Internet protocols). Degree in Computer Science, Information Security or a related field. Microsoft Security Operations Analyst certification.