An organisation is searching for a SOC Analyst (Remote), please see some of their job details below.

What you’ll do:

1. Execute and enhance operational processes for continuous monitoring of our environments
2. Monitor and analyze security events to identify and neutralize threats
3. Leverage your expertise to conduct threat hunting and investigations
4. Partner with the Incident Response Team to contain and remediate security breaches
5. Contribute to the continuous improvement of our SOC procedures and tools
6. Work alongside security engineers to enhance detection and response capabilities

Key Responsibilities:

1. Defend the enterprise perimeter from malicious network activity
2. Secure internal networks and hosts against cyber threats
3. Enrich security logs, correlate events, and detect security issues
4. Perform security event analysis, triage incidents, and document cases
5. Proactively review threat intelligence and conduct threat hunting
6. Assist in developing and maintaining SOC documentation
7. Participate in post-incident reviews to improve security operations
8. Support management in creating security reports and recommendations
9. Collaborate with security engineers on SIEM rules, threat models, and playbooks
10. Participate in an on-call rotation

Are you the perfect candidate?

1. You have 3-5 years of experience as a security professional
2. You have experience with proprietary security protection/detection tools such as Firewalls, Host and Network IDS/IPS, Anti-Virus, EDR, URL Filtering Gateways, Email Filtering Gateways, DLP tools, SIEM tools, etc.
3. You have applied experience with threat analysis models/frameworks such Cyber Kill Chain, MITRE ATT&CK, Diamond Model, Pyramid of Pain, etc.
4. You have a working knowledge of advanced threat tactics, techniques, and procedures (TTPs)
5. You can analyze threats, prioritize effectively, and work independently under pressure
6. You’re a team player with excellent communication skills (written, verbal, and presentations)
7. A thirst for knowledge and a passion for cyber security are a plus!

Qualifications:

1. Any combination of education and experience that would likely provide the required knowledge, skills, and abilities as well as possession of any industry licenses or certifications is qualifying (Security+, GCIA, GSOC, GCDA, GCIH)
2. Experience with threat analysis frameworks and network traffic analysis tools
3. Familiarity with various security tools and technologies

#LI-remote

#LI-JB1

#Other