Security Analyst (L1 Incident Responder)

Role Overview:

We are seeking a dedicated L1 Incident Responder to join our Security team. The ideal candidate will act as the first line of defence, responsible for monitoring client security alerts, triaging incidents, and escalating potential threats. This role is critical in ensuring rapid detection and response to security events, maintaining the organisation's security posture.

Key Responsibilities:

• Monitor security alerts and events from SIEM, EDR, firewalls, and other security tools.
• Perform initial triage, analysis & resolution as applicable for security incidents based on predefined playbooks and runbooks.
• Identify false positives and escalate true positive incidents to L2/L3 teams for deeper investigation.
• Document incidents accurately, including event timelines, analysis performed, and actions taken.
• Assist in basic containment steps as per instructions(e.g., isolating hosts, blocking IPs).
• Track and follow up on incident response cases to closure.
• Stay updated with the latest security threats and trends.

Required Skills & Qualifications:

• Bachelor's degree or relevant experience in Computer Science, Information Security, or related field.
• Basic understanding of networking concepts (TCP/IP, DNS, HTTP/S, etc.).
• Familiarity with cybersecurity fundamentals such as malware, phishing, brute force attacks, DDoS, etc.
• Hands-on experience or knowledge of SIEM tools (e.g., Wazuh, CrowdStrike, Obsidian, or similar) and EDR solutions.
• Ability to analyse security logs and interpret basic attack indicators.
• Good understanding of incident response lifecycle and security operations.

Good to Have:

• Security certifications as Security+, CEH, Cy SA+, or equivalent.
• Exposure to threat intelligence feeds and basic IOC (Indicators of Compromise) analysis.
• Familiarity with ticketing systems (JIRA, ServiceNow, etc.).

Soft Skills:

• Attention to detail and analytical thinking.
• Decent communication skills for effective incident reporting and escalation.
• Willingness to work in rotational shifts (24x5 environment).
• Team-oriented with the ability to follow processes and work under supervision.
• Cyber Security vibe is a must.