Security Operations Center Analyst

Job Title:

Location:

Position Overview

We are seeking a SOC Analyst to join our security operations team. The role involves continuous monitoring, detection, investigation, and response to security incidents across enterprise systems. The SOC Analyst will work with SIEM, SOAR, IDS/IPS, NGFW, EDR, and other security technologies to protect against evolving threats, ensure rapid incident response, and strengthen the overall security posture.

Key Responsibilities

• Monitor and analyze security events through SIEM platforms to detect potential threats.
• Investigate alerts and incidents using IDS/IPS, NGFW, EDR, WAF, vulnerability scanners, and bot management solutions.
• Perform network protocol analysis (TCP, UDP, DNS, DHCP, IPSEC, HTTP, etc.) to identify abnormal traffic and possible intrusions.
• Utilize EDR tooling to analyze endpoint activity and provide containment/remediation recommendations.
• Respond to and mitigate DDoS attacks and other advanced threat vectors.
• Operate SOAR platforms to streamline and automate detection and response processes.
• Contribute to defensive security strategies, incident response playbooks, and continuous improvement of SOC operations.
• Document investigation findings, response actions, and lessons learned.

Required Skills & Qualifications

• Experience with SIEM platforms (Splunk, QRadar, ArcSight, or similar).
• Strong knowledge of IDS/IPS, NGFW, WAF, and vulnerability management tools.
• Hands-on experience with EDR solutions such as CrowdStrike, Carbon Black, or SentinelOne.
• Familiarity with bot management solutions and DDoS mitigation strategies.
• Solid understanding of network protocols and protocol analysis tools.
• Exposure to SOAR platforms for incident response automation.
• Strong analytical, problem-solving, and communication skills.
• Bachelor’s degree in Information Security, Computer Science, or a related field (or equivalent work experience).
• Security certifications (CompTIA Security+, CEH, GCIH) preferred)