SOC Analyst

1. Incident Detection and Response:

• Monitor security alerts and events to identify potential security incidents.
• Investigate and analyze security alerts incidents and anomalies.
• Provide timely and effective response to identified security incidents.

1. Security Event Analysis:

• Conduct indepth analysis of security events using various security tools.
• Correlate and analyze relevant data from multiple sources to identify security threats.
• Develop and maintain procedures for incident detection and response.

1. Security Tools Management:

• Utilize and manage security information and event management (SIEM) tools.
• Maintain and optimize intrusion detection/prevention systems.
• Stay updated on the latest security technologies and threat intelligence.

1. Vulnerability Management:

• Conduct vulnerability assessments and provide recommendations for remediation.
• Work with IT teams to ensure timely patching of vulnerabilities.
• Stay informed about the latest security vulnerabilities and advisories.

1. Threat Intelligence:

• Stay current on emerging threats and vulnerabilities.
• Incorporate threat intelligence into daily monitoring and analysis.
• Collaborate with threat intelligence teams to enhance security posture.

1. Incident Reporting and Documentation:

• Document and report incidents findings and actions taken.
• Provide clear and concise reports to management on the status of security incidents.
• Contribute to postincident reviews and lessons learned.

1. Collaboration and Communication:

• Work closely with other IT and security teams to address security concerns.
• Collaborate with external security vendors and service providers.
• Provide guidance and mentorship to junior SOC analysts.

• Bachelors degree in Computer Science Information Technology or a related field.
• Minimum of 5 years of experience in a Security Operations Center (SOC) environment.
• Relevant certifications such as CISSP GIAC or equivalent.
• Proficient in using SIEM tools and other security technologies.
• Strong understanding of networking operating systems and cybersecurity principles.
• Excellent analytical and problemsolving skills.
• Effective communication and collaboration skills.
• Ability to work in a dynamic and fastpaced environment.

soc,siem,threat intelligence,firewall,incident management,.net,threat analysis,sql injection,dlp,dos,ddos,cyber security,security event management