Security Operations Center Analyst (SOC)

• 2 – 6 Years of Experience
• Role – SOC Analyst – A2

Roles and Requirements

• The Level 2 SOC Security Analyst is responsible for conducting information security investigations due to security incidents identified from various SOC entry channels (SIEM, Tickets, Email and Phone).
• Act as a point of escalation in support of information security investigations to provide guidance and oversight on incident resolution and containment techniques.
• Create and maintain SOC Run books for SIEM tools.
• Act as the lead coordinator response to individual information security incidents.
• Mentor security analysts regarding risk management, information security controls, incident analysis, incident response, SIEM monitoring, and other operational tasks in support of technologies managed by the Security Operations Centre.
• Document incidents from initial detection through final resolution.
• Participate vulnerability management.
• Participate in evaluating, recommending, implementing, and troubleshooting security solutions and evaluating IT security of the new IT Infrastructure systems.
• Communicate effectively with customers, teammates, and management.
• Prepare Monthly Executive Summary Reports for managed clients and continuously improve their content and presentation.
• Provide recommendations in tuning and optimisation of security systems, SOC security process, procedures, and policies.
• Define, create, and maintain SIEM correlation rules, customer build documents, security process and procedures.
• Follow ITIL practices regarding incident, problem and change management.
• Staying up to date with emerging security threats including applicable regulatory security requirements.
• Other responsibilities and additional duties as assigned by the SOC Manager.
• Preferred Information Security professional designations such as CEH, CompTIA Security+.