Job Summary:

The SOC Analyst is responsible for monitoring, detecting, analyzing, and responding to cybersecurity incidents using a variety of tools and techniques. They serve as the first line of defense in identifying and responding to potential threats to the organization’s systems, networks, and data.

Key Responsibilities:

• Monitor security alerts and logs from SIEM (Security Information and Event Management) tools.
• Analyze and triage security incidents to determine severity and impact.
• Respond to incidents, investigate root causes, and take steps to contain and remediate threats.
• Conduct threat hunting and proactive analysis to identify emerging threats.
• Escalate complex incidents to higher-level analysts or incident response teams.
• Document incidents, findings, and actions taken in accordance with organizational protocols.
• Collaborate with other IT teams to ensure systems are patched and hardened.
• Assist in improving SOC procedures and response playbooks.
• Stay updated on the latest security threats, tools, and trends.

Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or related field.
• 1–3 years of experience in cybersecurity, preferably in a SOC environment.
• Familiarity with SIEM platforms (e.g., Splunk, IBM QRadar, ArcSight).
• Understanding of TCP/IP, network protocols, firewalls, IDS/IPS, and malware analysis.
• Knowledge of security frameworks (e.g., NIST, MITRE ATT&CK, ISO 27001).
• Relevant certifications (preferred): CompTIA Security+, CEH, GCIA, GCIH, or equivalent.