وصف الوظيفة
Job Description
SOC L1 operates in a shift-based role within a 24/7 Security Operations Center (SOC) environment. The analyst is responsible for delivering continuous monitoring services to clients as part of a managed SOC, ensuring timely detection, analysis, and escalation of security incidents.
Roles & Responsibilities
- Continuously monitor security dashboards, alerts, and notifications
- Review alerts from SIEM systems and other security monitoring tools to identify potential security incidents.
- Collect relevant data and investigate alerts to determine if they are false positives.
- Record findings and actions taken in incident tracking systems.
- Contribute to the identification of emerging threats by staying updated on the latest security trends.
- Support the team in updating detection rules and security policies as needed.
- Follow established SOPs and incident handling processes.
- Prepare initial reports on security events for senior analysts and management.
- Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent work experience).
- Familiarity with SIEM platforms, log analysis, or security monitoring tools.
- Excellent analytical and problem-solving skills.
- Familrairty with Threat Intelligence & Detection methdolgoies.
- Familiratiy with different security controls and assoicated logs.
- Familiarity with network, endpoint, and web attacks and how to detect them.
- Strong written and verbal communication skills for reporting incidents.
