SOC Analyst

As a SOC I Analyst, you will be responsible for monitoring, analyzing, and responding to security alerts to help protect the organization from cyber threats. You will support the day-to-day security operations by triaging alerts, investigating suspicious activity, and escalating confirmed incidents in accordance with established security procedures. This role is an important part of the Security Operations Center (SOC) and works closely with security engineers, IT, and engineering teams to maintain visibility into the organization's security posture. The SOC Analyst I will follow defined playbooks and processes while developing hands-on experience with security tools, incident response, and threat detection techniques.

Key Areas of Responsibilities:

Security Monitoring and Alert Triage:

Monitor security tools (SIEM, EDR, IDS/IPS, cloud security tools) to identify, triage, and prioritize security alerts and events.

Incident Investigation and Escalation:

Perform initial investigation of potential security incidents, gather evidence, document findings, and escalate confirmed or high-risk incidents to senior analysts or security engineers.

Incident Response Support:

Assist with incident response activities by following established runbooks and playbooks, helping to contain and remediate security incidents.

Log Analysis and Threat Detection:

Analyze logs, alerts, and network traffic to identify anomalous or suspicious behavior that may indicate a security threat.

Documentation and Reporting:

Maintain accurate incident records, investigation notes, and reports to support audits,compliance efforts, and continuous improvement.

Tool and Process Improvement:

Provide feedback on SOC tools, detection rules, and response procedures to help improve security operations over time.

Collaboration:

Work closely with SOC Analysts II, Security Engineers, and IT teams to support investigations and strengthen overall security posture. Own the remediation lifecycle for identified vulnerabilities, including prioritization, coordination with engineering and IT teams, implementation of fixes, validation of remediation, and documentation to ensure due care and compliance requirements are met.

Skills:

Analytical thinking: Ability to analyze alerts, logs, and security data to identify potential threats.

Communication:

Clearly document findings and escalate issues to senior team members when appropriate.

Problem-solving:

Curious and motivated to understand how attacks work and how to stop them.

Attention to detail:

Careful and methodical when investigating security events and documenting outcomes.

Education and Experience:

Bachelor's degree in computer science, cybersecurity, or a related field, or equivalent practical experience. 1-3 years of experience in a SOC, IT operations, networking, or systems administration role. Familiarity with security concepts such as SIEM, endpoint security, networking fundamentals, and common attack techniques. Entry-level or foundational certifications such as CompTIA Security+, CySA+, or equivalent are beneficial.

We offer:

We're not about all the hard work and no fun. Our office is relaxed, and we have no dress code. We do our best to look after our people. Below is a snapshot of the perks you'll get if you work with us. A diverse, challenging, yet fun work environment with real-life applications. Opportunity to use your skills even outside of your role, with the option to grow outside of your role. Work with and learn from talented colleagues. Full-time employment with a competitive salary. Hybrid Working Environment (3days per week on site) We don't offer just a job. We want to give you the opportunity to grow and move the simulation market forward.