SOC - L3 & Lead

Roles Responsibilities

Location:

Mode of work:

Qualification

• Bachelor's degree in Computer Science/Information Technology, or a related field.
• 7+ years in overall cybersecurity, with at least 2 years as a SOC L2 Analyst, 2 years as a SOC L3 Analyst with team handling capability.
• A Relevant Cybersecurity certification is preferred
  

• Managing end-to-end onboarding of customers onto the SIEM platform (Securonix, Rapid7, MS Sentinel).
• Conduct advanced investigations into security incidents, including malware analysis, intrusion detection, and incident response.
• Escalate complex security issues to management and coordinate cross-team efforts to resolve incidents.
• Develop and refine security detection rules and procedures.
• Perform threat hunting to identify hidden or emerging threats within the environment.
• Provide mentorship and guidance to L1 and L2 SOC Analysts.
• Stay updated on the latest cybersecurity threats, trends, and technology solutions.
• Identify gaps in visibility and recommend enhancements.
• Design and implement detective controls for emerging threats and vulnerabilities
• Act as a senior liaison with threat intelligence and infrastructure teams to enhance detection and response capabilities.
• Collaborate across teams to improve the organisation’s threat detection and response maturity.
• Drive overall governance, maturity and/or transformation of SOC with new/existing solutions that meet business and security objectives
  

Required Skills

• Onboarding Skills on SIEM Platform (Securonix/MS Sentinel)
• CrowdStrike EDR fine-tuning and attack mitigation
• Strong knowledge of MITRE ATT CK, NIST CSF frameworks, and cyber kill chain concepts
• Strong understanding of cybersecurity principles, including SIEM, IDS/IPS, and endpoint detection and response (EDR) solutions.
• Strong technical background in log analysis, data correlation, and behavioural analytics.