L1 SOC Analyst (Level 1 Security Operations Center Analyst)

About the Role

We are looking for Level 1 SOC Analysts to join our growing Threat Detection & Response (TDR/SOC) team. In this role, you will help protect customers from an ever-evolving cybersecurity threat landscape.

As an L1 SOC Analyst, you will be responsible for identifying, analyzing, and responding to security events across multiple environments. You will work closely with internal teams and directly interface with customers to ensure timely and effective incident resolution.

This is a shift-based role as part of a 24/7 SOC operation, which includes night shifts, weekends, and holidays.

You will also undergo a structured mentorship program to help you ramp up on tools, processes, and real-world SOC operations. This role offers exposure to broader cybersecurity domains such as threat intelligence, cloud security, and penetration testing.

Key Responsibilities

• Monitor and triage security alerts from SIEM, EDR, and other security tools


• Perform alert analysis including threat identification, severity classification, and data gathering


• Conduct incident analysis and investigation


• Execute response actions (manual or automated) to contain or remediate threats


• Provide recommendations based on incident findings


• Gather additional information as required by customers or escalation teams


• Escalate complex incidents to L2/L3 teams when necessary


• Document incidents, actions, and findings in ticketing systems


• Ensure compliance with SLAs and SOPs


• Participate in shift rotations (including nights, weekends, and holidays)


• Collaborate with team members and contribute to continuous improvement initiatives

Minimum Qualifications

• Basic understanding of:
  
  
  
  • Networking concepts (TCP/IP, DNS, ports, protocols)
  
  
  • Security fundamentals (CIA Triad, authentication/authorization, common attack types)
  
  
  • Windows/Linux fundamentals (event logs, services, file systems)
  
  
  
  


• Bachelor’s degree in IT, Computer Science, Cybersecurity, or a related field
  (or equivalent practical experience)

Preferred Skills and Experience

• Exposure to cybersecurity tools (SIEM, EDR, firewalls)


• Basic scripting knowledge


• Hands-on experience through labs or CTF platforms (e.g., TryHackMe, Hack The Box)


• Familiarity with:
  
  
  
  • Active Directory
  
  
  • MITRE ATT&CK framework
  
  
  
  


• Relevant certifications or cybersecurity training

What We’re Looking For

• Highly curious and eager to learn about cybersecurity threats


• Self-motivated and driven to grow in the field


• Resourceful, proactive, and willing to challenge ideas


• Strong team player with flexibility in a fast-paced environment