SOC Analyst - Security Information & Event Management Tools (1-2 yrs)

Soc Analyst

Security Monitoring & Analysis :

- Continuously monitor security alerts from SIEM (Security Information and Event Management) tools.

- Investigate security incidents and provide initial analysis to determine impact and scope.

- Respond to alerts, escalate incidents when necessary, and recommend mitigation strategies.

Threat Detection & Response :

- Analyze and correlate security data from different sources.

- Identify potential security threats such as malware, phishing, and unauthorized access.

- Support incident response efforts, including containment and remediation.

Log & Event Analysis :

- Review logs from firewalls, IDS/IPS, endpoint security tools, and other security devices.

- Identify trends and anomalies that indicate potential security risks.

Vulnerability Management :

- Assist in scanning for vulnerabilities and recommending corrective actions.

- Work with IT teams to patch and remediate security gaps.

Documentation & Reporting :

- Maintain accurate records of incidents, investigations, and resolutions.

- Prepare security reports and metrics for management review.

Required Skills & Qualifications :

- Education : Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field.

- Experience : 1-2 years in a SOC or cybersecurity-related role.

Technical Skills :

- Knowledge of SIEM tools (Splunk, QRadar, ArcSight, etc.).

- Experience with IDS/IPS, firewalls, and endpoint security solutions.

- Basic understanding of networking, Windows/Linux systems, and cloud security.

- Familiarity with threat intelligence platforms and malware analysis.

Certifications (Preferred but Not Mandatory) :

- CompTIA Security+, CEH, or any SOC-related certification.