SR. SOC ANALYST

About the role.
he Senior SOC Analyst is an integral part of our Security Operations Centre (SOC) team ensuring the organization's and its customerus IT infrastructure is protected against threats and vulnerabilities.
Youull be assisting with overseeing the security operations center, managing security incidents, monitoring and analyzing security events, and leading a team of SOC analysts.
Weull look to you to perform the critical job of monitoring and responding to security events from various SOC entry channels (SIEM, EDR, Tickets, Email, Phone) based on the severity and ensure playbooks are executed and appropriate investigative processes are followed.
ou will also assist with managing and tuning various technology products such as SIEM, EDR, WAF and IDS/IPS policies.
Leveraging your expertise, you will also provide continual service improvement by creating and updating security processes and incident response playbooks.
esponsibilities.
onitor and analyze security alerts and participate in security incident management and responseParticipate in evaluating, recommending, implementing, responding, and troubleshooting security solutionsPerform tuning and optimization of security systems (SIEM, EDR, SOAR, WAF,IDS/IPS)Follow ITIL practices regarding incident, problem, and change managementCreate and maintain build documents, security procedures, and processes including Incident management and incident response playbooksStay up-to-date with emerging security threats including applicable security requirementsReview and analyze identified threats, risks and findings generated from vulnerability analysis tools and work with stakeholders to mitigate vulnerabilitiesAct as first responder or escalation point, depending on incident severity, following Incident Response PlaybooksPeriodically expected to work off-hours to support deployments,system upgrades and respond tosecurity eventsConduct threat hunting activities to proactively identify potential threats.
ntegrate threat intelligence feeds into security monitoring tools to enhance threat detection.
tay updated on the latest threat landscape, tactics, techniques, and procedures (TTPs) of adversaries.
equirements.
achelor's Degree / Diploma in a relevant area of study with a preference for Information Security, Computer Science or Computer Engineering or equivalent experienceRequires 6 to 8 years of relevant previous experience working in a Security Operations Centre and conducting security investigationsStrong knowledge of security incident management, malware management, and vulnerability management processesSolid understanding of IT, including multiple operating systems and system administration skills (Windows, Linux)Basic understanding of public (AWS, GCP, Azure) and private (VMWare) cloudStrong understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAPPrevious experience with security technologies such as SIEM, EDR/XDR, SOAR, IDS/IPS, WAF, NextGen FirewallsAnalytical thinker who is able to assess circumstances and determine appropriate course of action based on urgencyAbility to adapt quickly to an ever changing, dynamic Security and IT industry.
eam player who can also work Independently with minimal supervision.
rofessional verbal and written communication skills - capable of contributing to Knowledge ManagementPolite, respectful to others, professional.
ice-to-have.
amiliarity with a scripting language (e.
., Python), REST APIs, jsonInformation Security professional designations such as MCSE, RHCP, CISSP, Security+, Network+Whatus in it for you.
rivate medical and life insurance from day one.
mployee Stock Purchase Plan ESPPBudget for professional growth (certifications)Schedule flexibility.
xtra bonus based on performance.