SOC Analyst
Share
Job Location:
Monthly Salary:
Posted on:
23 hours ago
Vacancies:
1 Vacancy
Department:
Job Summary
Presidio Where Teamwork and Innovation Shape the Future
AtâPresidio were at the forefront of a global technology revolution transforming industries throughâcutting-edge digital solutions and next-generation AI. We empower businessesand their customersto achieve more through innovation automation and intelligent insights.
The Role
The Security Operations Centre (SOC) Analyst is responsible for analysing P1/P2/P3 alerts generated by SOC monitoring tools as well as participating in the ongoing maintenance and optimization of these tools. Serving as a Tier 1 analyst this role acts as the primary point of contact for triaging and analysing security incidents and addressing customer requests. The Tier 1 SOC Analyst reviews security incidents according to established internal processes and escalates issues to the Tier 2 Analyst when necessary. Additionally the analyst collaborates with team members to collect correlate and analyse security-relevant data ensuring timely and effective responses to potential threats.
Responsibilities include:
- Work with the other Tier 1 SOC Analysts to perform analysis and triage of security incidents and threat activity
- Provide support and cooperate with other members of the SOC team
- Be responsible to manage his time and the assigned tasks
- Regularly and promptly carry out the ticket management tasks
- Staying up to date with emerging security threats
- Communicate effectively with customers teammates and management
- Effective performance during high-stakes security incidents or periods of high alert volume
- Monitor the service ticket board and ensure the tickets are managed and responded in line with SLA
- Escalate false positive incidents to L2 Analyst for fine tuning
- Provide feedback to help automating common recurring tasks
- Identify and leverages emerging threat intelligence (IOCs updated rules etc.) to identify affected systems and the scope of the attack
- Create monthly customer reports
- Review vulnerability scans results
Required Skills and Professional Experience
- Requires background in at least 2 of the following domains: ethical hacking incident response forensic analysis security engineering incident analysis and investigations
- Minimum of 1 years experience working in a Security Operations Centre with Security Incident & Event Management (SIEM) systems
- Experience with SIEM technology preferably on IBM QRadar and Microsoft Sentinel
- Experience with EDR technology preferably Microsoft Defender and Sophos
- Experience in incident analysis detection and response
- Familiarity with network and server OS security tools and protocols
- Familiarity with security systems like firewalls IPS/IDS and web proxies
- Good understanding of Windows and Linux operating systems understanding of cloud infrastructure is a plus
- Relevant security certifications are a plus (e.g. Microsoft SC-200 IBM certified analyst CompTIA Security CEH etc.)
Your future at Presidio
JoiningâPresidioâmeans stepping into aâculture of trailblazersthinkers builders and collaboratorswho push the boundaries of whats possible. With our expertise inâAI-driven analytics cloud solutions cybersecurity and next-gen infrastructure we enable businesses to stay ahead in an ever-evolving digital world.
Hereâyour impact is real.âWhether youre harnessing the power ofâGenerative AI architecting resilientâdigital ecosystems or drivingâdata-driven transformation youll be part of a team that is shaping the future.
Ready to innovate Lets redefine whats nexttogether.
About Presidio
At Presidio speed and quality meet technology and innovation. Presidio is a trusted ally for organizations across industries with a decades-long history of building traditional IT foundations and deep expertise in AI and automation security networking digital transformation and cloud computing. Presidio fills gaps removes hurdles optimizes costs and reduces risk. Presidios expert technical team develops custom applications provides managed services enables actionable data insights and builds forward-thinking solutions that drive strategic outcomes for clients globally. For more information visit .
Presidio is committed to hiring the most qualified candidates to join our amazing culture. We aim to attract and hire top talent from all backgrounds including underrepresented and marginalized communities. We encourage women people of color people with disabilities and veterans to apply for open roles at Presidio. Diversity of skills and thought is a key component to our business success.
Recruitment Agencies Please Note: Presidio does not accept unsolicited agency resumes/CVs. Do not forward resumes/CVs to our careers email address Presidio employees or any other means. Presidio is not responsible for any fees related to unsolicited resumes/CVs.
#LI-DC1
Required Experience:
IC
Key Skills
- ArcGIS
- Intelligence Community Experience
- GIS
- Python
- Computer Networking
- Data Collection
- Intelligence Experience
- R
- Relational Databases
- Analysis Skills
- Data Management
- Application Development
About Company
Presidio is a global digital solutions and services provider delivering software-defined cloud, collaboration and security solutions to customers of all sizes.
