Title:  Technical Specialist-Cybersecurity

Area(s) of responsibility

Job Summary

SOC Analyst 2, you will play a critical role in monitoring, detecting, analyzing, and responding to cybersecurity threats within our organization. This mid-level position requires hands-on experience with security tools, incident response, and threat intelligence. You’ll collaborate with cross-functional teams to ensure rapid containment and remediation of security incidents while continuously improving our security posture.

Roles and responsibilities

• Monitor security alerts and events from SIEM and other various sources (SIEM, IDS/IPS, endpoint protection, firewalls, etc.) to identify potential threats
• Perform in-depth analysis of suspicious activities, malware, phishing, and network anomalies
• Respond to security incidents, conduct triage, containment, eradication, and recovery
• Document incident findings, create detailed reports, and contribute to post-incident reviews
• Collaborate with Tier 1 analysts to escalate and resolve complex incidents
• Investigate alerts using forensic tools, log analysis, network traffic analysis, and threat intelligence.
• Maintain and tune SIEM rules, dashboards, and use cases for improved detection
• Conduct threat hunting activities based on IOCs, TTPs, and threat intelligence feeds
• Assist in vulnerability assessments and recommend mitigation strategies
• Stay current with emerging threats, vulnerabilities, and security technologies
• Support compliance and audit activities by providing relevant logs and documentation
• Conduct root cause analysis of incidents and recommend improvements to prevent recurrence.
• Hands-on experience with any one of the SIEM tools Sentinel, QRadar, Splunk, ArcSight, etc