Soc Analyst

Position Purpose

Looking for highly skilled and experienced SIEM Specialist to join our Infosec team. The ideal candidate will have a strong background in security information and event management, with a focus on monitoring, analysing, and responding to security incidents. This role requires expertise in configuring and managing SIEM tools, Threat Intel Tool, conducting detailed incident investigations, and implementing effective security measures to protect our organization's digital assets.

Position Responsibilities

• Continuously monitor security alerts and incidents using Microsoft Sentinel.
• Respond to and investigate security incidents, perform root cause analysis, and implement corrective actions.
• Utilize threat intelligence to identify and mitigate potential security threats.
• Configure and manage security tools and technologies, including SIEM, Cyble, Izoologic, Deception, Dark web and endpoint protection.
• Ensure all identified gaps gets implemented with appropriate security measures.
• Work closely with other security team members and stakeholders to enhance security measures.
• Review daily operational activities and provide timely mentorship to junior SOC analysts.
• Conduct detailed investigations of escalated alerts.
• Validate closed incidents to ensure accuracy.
• Manage shifts and facilitate knowledge transfer during shift handovers.
• Perform deep-dive incident analysis by correlating data from various sources.
• Document and archive artifacts for future reference.
• Lead junior SOC analysts in investigations, analysis, and alert categorization.
• Monitor various technology dashboards to identify suspicious anomalies.
• Ensure quality checks for alerts raised by Level 1 SOC analysts.
• Track and report on SLA compliance.
• Fine-tune alerts to improve detection accuracy.
• Submit audit data as required.

Qualifications and Experience Requirement

Essential

• Bachelor's degree in any steam or in Computer Science, Information Security.
• Any one or two certification in security frameworks such as MS sentinel SIEM, CISSP, CISM, CEH, CHFI

Essential

• Minimum of 4-8 years of experience in a SOC environment, with at least 2 years of experience with Microsoft Sentinel.
• Strong understanding of security concepts, including network security, Knowledge of regulatory requirements.
• Sound Knowledge on security solutions Antivirus, IDS/IPS, EDR-XDR, Anti apt solutions, TACAS, NAC, DAM, IDAM
• Proficiency in SIEM tools, threat intelligence platforms, and incident response methodologies.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Well versed with emerging technologies, associated risks and associated controls to manage risks.
• Ability to work effectively in a team-oriented environment.

Threshold

Technical Expertise:

Problem-Solving:

Decision-Making:

Communication:

Leadership:

Leadership Competencies

Strategic Thinking:

Innovation:

Influence:

Relationship Building:

Change Management: