SOC Analyst L1

We are seeking a skilled and vigilant SOC (Security Operations Center) Analyst to join our team. The ideal candidate will be responsible for monitoring, analyzing, and responding to security incidents within our organization's infrastructure. The SOC Analyst will work closely with the security team to ensure threats are identified, investigated, and mitigated effectively.

Responsibilities

• Perform continuous monitoring, providing vigilant coverage on a rotating shift basis (24/7/365).
• Assess and elevate security incidents by promptly initiating triage processes.
• Monitor security events and incidents to identify potential threats or security breaches.
• Analyze security data and perform triage to determine the severity of incidents.
• Investigate alerts, anomalies, and security breaches, escalating where necessary.
• Implement and follow incident response procedures and best practices.
• Provide timely and effective incident response, including containment and remediation.
• Document security incidents, investigations, and actions taken for future reference.
• Collaborate with other teams to enhance security measures and implement solutions.
• Stay updated with emerging threats and security technologies.
• Participate in the continuous improvement of security processes and procedures.

Requirements:

• Bachelor's degree in Information Security, Cybersecurity or related field.
• 1-3 years of experience in cybersecurity, IT or a related field.
• Experience with security monitoring tools (SIEM, IDS/IPS) or basic network troubleshooting is a plus.
• Internship or hands-on training in cybersecurity.
• Basic knowledge of SIEM tools.
• Familiarity with IDS/IPS.
• Understanding of endpoint protection tools.
• Basic understanding of networking concepts such as TCP/IP, DNS, HTTP, and VPNs.
• Familiarity with firewalls, routers, and networking monitoring tools.
• Ability to work with command-line interfaces and basic scripting.
• Ability to identify patterns and anomalies in data.
• Foundational knowledge of cybersecurity threats, vulnerabilities, and attack methods.