SOC Analyst Level- 1

Job Brief:

Responsible for monitoring the different security systems utilized in a SOC environment to ensure the timely detection of security incidents. This position involves performing daily operational security-related tasks (monitor, investigate, escalate and respond)

Key Responsibilities:

• Actively monitor security alerts from the SIEM and other security tools to identify potential threats.
• Perform initial analysis to assess the severity and validity of alerts.
• Escalate incidents require advanced analysis or response to L2 analysts or relevant teams.
• Review and analyze logs from various sources, such as firewalls, servers, and endpoints, to detect suspicious activity.
• Prepare and maintain periodic reports on security incidents and events for internal teams and stakeholders.
• Respond to customer requests for information or support regarding security incidents or events.
• Assist in maintaining SOC tools, dashboards, and processes under supervision. 
• Stay informed about the latest cybersecurity threats and attack vectors.

Requirements

Education: Bachelor Degree in Cyber Security, Computer Science, Computer Engineering or any related field.

Level of Experience: Basic Knowdledge (0-2Y) in a related filed.

Certifications & Licensure:

Essential:

One or more of the following technical certificates (or equivalent):

• EC-Council Certified Ethical Hacker (CEH)
• CompTIA Security+
• Cisco Certified Network Associate Routing & Switching (CCNA)

Desirable:

One or more of the following technical certificates (or equivalent):

• EC-Council Certified SOC Analyst (CSA).
• Splunk Core Certified Power User
• EC-Council Computer Hacking Forensic Investigator (CHFI).
• CompTIA Linux+ Certification.

Tools & Systems:Essential:

• Good knowledge of various operating system including Windows, Linux and UNIX.

Basic knowledge of the following security systems:

• Security information and event management (SIEM).
• Intrusion detection and prevention (IDPS).

Desirable:

· Basic knowledge of the following security systems:

• Next-generation firewall (NGFW).
• Endpoint Antivirus/Antimalware.
• Endpoint detection and response (EDR).
• Denial of service (DoS) attacks mitigation.

Technical Skills & Knowledge:

Essential:

• Good command of operating systems and network protocols.
• Ability to learn new security technologies and products.
• Ability to perform incident analysis and response tasks.

Desirable:

A working experience/internship in a SOC environment