Negotiable
Undetermined
Remote
Remote
Summary: We are seeking a Mid-Level SOC Analyst with 3–5 years of experience in Security Operations. The candidate will be responsible for monitoring, investigating, and responding to cybersecurity incidents to maintain the organization's security posture. Hands-on experience with various security tools and a strong understanding of security principles are essential for this role.
Key Responsibilities:
- Monitor and analyze security alerts using SIEM tools.
- Investigate, triage, and respond to security incidents.
- Perform threat detection, incident analysis, and root cause analysis.
- Monitor network, endpoint, and cloud security events.
- Conduct vulnerability assessments and coordinate remediation.
- Collaborate with IT and security teams to contain and resolve incidents.
- Prepare incident reports and maintain security documentation.
- Follow security policies, compliance standards, and best practices.
Key Skills:
- 3–5 years of SOC or Cybersecurity experience.
- Hands-on experience with Microsoft Sentinel, Splunk, QRadar, ArcSight, or LogRhythm.
- Knowledge of EDR/XDR tools (Microsoft Defender, CrowdStrike, SentinelOne, etc.).
- Strong understanding of TCP/IP, DNS, Firewalls, IDS/IPS, VPN, and Networking.
- Experience with Windows, Linux, and Active Directory.
- Familiarity with MITRE ATT&CK, Cyber Kill Chain, and incident response methodologies.
- Knowledge of cloud security (Azure/AWS) is a plus.
- Strong analytical and troubleshooting skills.
Salary (Rate): undetermined
City: undetermined
Country: undetermined
Working Arrangements: remote
IR35 Status: undetermined
Seniority Level: Mid-Level
Industry: IT
Job Title: SOC Analyst (Mid-Level)
Experience: 3–5 Years
Job Summary
We are looking for a Mid-Level SOC Analyst with 3–5 years of experience in Security Operations. The ideal candidate should have hands-on experience in monitoring, investigating, and responding to cybersecurity incidents while ensuring the organization''s security posture.
Key Responsibilities
Monitor and analyze security alerts using SIEM tools.
Investigate, triage, and respond to security incidents.
Perform threat detection, incident analysis, and root cause analysis.
Monitor network, endpoint, and cloud security events.
Conduct vulnerability assessments and coordinate remediation.
Collaborate with IT and security teams to contain and resolve incidents.
Prepare incident reports and maintain security documentation.
Follow security policies, compliance standards, and best practices.
Required Skills
3–5 years of SOC or Cybersecurity experience.
Hands-on experience with Microsoft Sentinel, Splunk, QRadar, ArcSight, or LogRhythm.
Knowledge of EDR/XDR tools (Microsoft Defender, CrowdStrike, SentinelOne, etc.).
Strong understanding of TCP/IP, DNS, Firewalls, IDS/IPS, VPN, and Networking.
Experience with Windows, Linux, and Active Directory.
Familiarity with MITRE ATT&CK, Cyber Kill Chain, and incident response methodologies.
Knowledge of cloud security (Azure/AWS) is a plus.
Strong analytical and troubleshooting skills.
Preferred Certifications
Security+
CEH
CySA+
SC-200
Splunk Core Certified
GIAC (Preferred)