Requirements
â Perform in -depth analysis of escalated, major, and critical security alerts to identify initial access vectors, attack paths, and indicators of compromise (IOCs)
â Triage, investigate, and respond to P1 and P2 incidents in accordance with defined incident response procedures
â Provide operational guidance and support to L1 analysts for handling P3 and P4 alerts and incidents
â Use threat intelligence feeds, sandboxing solutions, and AI tools responsibly and securely within cyber defence operations
â Conduct investigations using managed security tools including Email Gateway, EDR, XDR, NDR, IDPS, and related platforms
â Maintain professionalism, discipline, and strong operational hygiene on the SOC floor
â Identify recurring attack patterns, detection gaps, and improvement opportunities in detection engineering
â Document investigation findings clearly and escalate confirmed major and critical incidents as per the escalation matrix
â Ensure incident titles and storylines accurately reflect the nature and business impact of incidents
â Validate incident reports to ensure precise mitigation steps and a clearly connected, evidence -backed timeline
â Work on major investigations assigned by senior analysts or raised directly by customers
â Suggest fine -tuning for noisy use cases using predefined reference sets or mapped detection sets
â Escalate log truncation, parsing, normalization, and mapping issues impacting detection and investigation quality
â Identify and report issues, bugs, or inaccuracies in automation workflows and response playbooks
â Ensure proper handover between shifts, prioritize tasks, and distribute workload based on analyst capacity
â Handle customer email communication and deliver critical client notifications during assigned shifts
â Initiate breach calls involving responsible stakeholders when customer requests or incidents have major impact
â Ensure strict adherence to incident response SOPs and SLA commitments
Key Performance Indicators (KPIs):
â Mean Time to Triage (MTTT)
â Mean Time to Investigate (MTTI)
â Mean Time to Respond (MTTR)
Skills and Qualifications:
â Bachelor's or Master's degree in computer science, Information Technology, or Cybersecurity
â Strong written and verbal communication skills (Upper -Intermediate level)
â Strong threat -hunting mindset with analytical and critical thinking abilities
â Hands -on experience in incident investigation, triage, and response within SOC environments
â Ability to work efficiently under pressure and manage multiple incidents simultaneously
â Willingness to work in 24Ã7 rotational shift
Preferred Experience:
Mandatory: Minimum 2+ years of experience in MSSP SOC or cyber defence operations
Salary :
Apply Now
Activate JobCopilot
Your email job alert is now active!