Job Summary
Job Summary:
We are seeking a Level 2 SOC Analyst responsible for continuous security monitoring, incident investigation, and response. The role involves analyzing alerts, identifying threats, and supporting remediation activities in a 24x7 SOC environment.
Key Responsibilities
Key Responsibilities:
- Monitor and analyze security alerts from SIEM/SOC monitoring tools
- Investigate and respond to incidents escalated from Level 1 analysts
- Perform root cause analysis of security incidents
- Analyze logs from network, endpoint, and application sources
- Correlate events across multiple tools to identify true threats
- Execute incident response procedures including containment and remediation
- Tune detection rules to reduce false positives and improve alert quality
- Participate in threat hunting activities and proactive monitoring
- Generate incident reports and provide recommendations
- Support shift handovers and maintain SOC documentation
Skill Requirements
Required Skills:
- Hands-on experience in SOC monitoring and SIEM tools
- Strong understanding of incident response lifecycle
- Knowledge of network security, endpoint security, and threat vectors
- Familiarity with MITRE ATT&CK framework
- Experience in log analysis and event correlation
- Good analytical and troubleshooting skills
Other Requirements
Good to Have:
- Experience with tools like Splunk, Microsoft Sentinel, QRadar
- Knowledge of EDR, IDS/IPS, DLP, Firewalls
- Basic scripting skills (Python, PowerShell)
Certifications (Preferred):
- CEH / CySA+ / GCIH
Soft Skills:
- Strong communication and documentation skills
- Ability to work in 24x7 shift environment
- Team collaboration and problem-solving mindset