Job Description

Job Summary:

As a SOC Analyst, you will be responsible for monitoring, detecting, analyzing, and responding to cybersecurity incidents within the organization. You will work within the Security Operations Center (SOC) and utilize various security tools and technologies to ensure the security and integrity of the company's information systems.

 

Key Responsibilities:

Security Monitoring and Analysis:

• Continuously monitor security alerts from various sources, including SIEM (Security Information and Event Management) systems, IDS/IPS (Intrusion Detection/Prevention Systems), firewalls, and other security tools.
• Analyze security incidents to determine the severity, root cause, and potential impact.
• Identify false positives and accurately classify events.

Incident Response:

• Respond to security incidents, including malware infections, unauthorized access attempts, and data breaches.
• Execute predefined incident response procedures to contain and mitigate threats.
• Conduct initial triage of security incidents and escalate to higher-level analysts or the incident response team when necessary.

Threat Intelligence:

• Gather and analyze threat intelligence from various sources to stay updated on the latest security threats and vulnerabilities.
• Correlate threat intelligence with internal data to identify potential risks to the organization.

Vulnerability Management & Penetration Testing:

• Assist in the identification, assessment, and remediation of vulnerabilities within the organization's systems.
• Collaborate with other IT teams to ensure timely patching and resolution of security issues.
• Perform authorized penetration testings to pinpoint weaknesses in systems

Documentation and Reporting:

• Document security incidents and response actions in detail for future reference and analysis.
• Generate regular reports on security incidents, trends, and overall SOC performance.
• Provide recommendations for improving the organization's security posture based on incident findings and analysis.

Collaboration and Communication:

• Work closely with other SOC analysts, IT staff, and relevant stakeholders to ensure a coordinated response to security incidents.
• Communicate effectively with non-technical stakeholders to explain security incidents and their impact.

Continuous Improvement:

• Participate in post-incident reviews to identify lessons learned and opportunities for improvement.
• Contribute to the development and enhancement of SOC processes, tools, and technologies.
• Stay current with industry best practices and emerging security technologies.

 

Qualifications:

• Bachelor's degree in Computer Engineering/Science, Information Security, or a related field.
• 2-5 years of experience in cybersecurity, preferably within a SOC environment.
• Experience with security monitoring tools, SIEM solutions, and incident response processes.
• Knowledge of security technologies such as firewalls, EDR, vulnerability management systems.
• Basic understanding of scripting languages (Python, PowerShell) for automation purposes.
• Certifications such as Certified Ethical Hacker (CEH) are a big plus.
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Ability to work in a fast-paced and dynamic environment.
• Detail-oriented with a proactive approach to identifying and resolving security issues.

Working Conditions:

• May require working in shifts to ensure 24/7 monitoring of the organization's security posture.
• Availability to respond to security incidents outside of regular business hours as needed.