SOC Analyst L2

Job Description: As a SOC (Security Operations Center) Analyst at our cybersecurity team, your role involves monitoring, detecting, analyzing, and responding to cybersecurity threats and incidents using various security tools. Your contribution is critical in safeguarding our organization from malicious activities and upholding the integrity of our systems and data. Key Responsibilities: - Monitor security alerts and events utilizing SIEM and other security tools. - Investigate potential threats and analyze logs to identify indicators of compromise (IoCs). - Triage and respond to security incidents promptly. - Escalate complex incidents to senior analysts or incident response teams when necessary. - Document incidents, findings, and remediation steps clearly and thoroughly. - Conduct threat intelligence research and contribute to improving detection use cases. - Support vulnerability assessments and provide mitigation recommendations. - Collaborate with IT, DevOps, and other departments to ensure robust security practices. - Participate in red team/blue team exercises, drills, and SOC process enhancements. Qualifications Required: - 4+ years of experience in SOC. - 3+ years at L2 level. - Expertise in SOC (EDR, incident response, threat hunting). - Experience with SIEM, particularly Splunk. - Holding an active CEH certificate. In this role, you will be expected to configure and maintain the SIEM system, develop and document incident response procedures, align SIEM rules with security policies, conduct computer forensic investigations, and proactively identify and report system security loopholes.,