Security Engineer

Job Title: SOC Engineer Department: Cybersecurity Section Job Summary: The SOC Engineer plays a critical role in ensuring the organization's cybersecurity posture is robust and resilient. The position is responsible for monitoring, analyzing, and responding to security events and incidents, maintaining security tools and technologies, and supporting continuous improvements to SOC operations.Key Responsibilities: Own and operate the most important security solutions designed to protect the company from cyber threats and attacks.Lead in deploying new solutions and technologies to improve the security posture of the company.Continuously fine-tune security solutions to reduce false positives and negatives.Act as L3 escalation point in analyzing and responding to security incidents from various security technologies and platforms.Perform platform health checks to ensure effective and efficient operation of security solutions.Drive continuous improvements to reduce threat dwell time through automation and process simplification.Collaborate with Penetration Testing, Cyber Hunt, Threat Intelligence, and other internal teams to enhance cybersecurity posture.Use tools to respond to incidents and actively improve the company's cybersecurity defenses.Develop the technical skills of junior SOC analysts to empower their effectiveness.Qualifications: Education and Certifications Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or related fields. Certifications such as Comp TIA Security+, CEH, CISSP, or GIAC are highly preferred.Experience: At least 4 years in SOC operations, cybersecurity, or related fields. Hands-on experience with SIEM tools, IDS/IPS, firewalls, and other security technologies. Proven incident detection, analysis, and response skills.Technical Skills: Strong understanding of networking protocols (TCP/IP, DNS, HTTP). Proficiency with NAC, SIEM, EDR, NDR solutions, IAM, PAM, and user behavior analysis. Familiarity with forensic tools and methodologies.Soft Skills: Excellent problem-solving and analytical skills. Strong communication abilities. Ability to work under pressure. Team-oriented with proactive learning and collaboration mindset.Key Performance Indicators (KPIs): Mean time to detect (MTTD) and respond (MTTR) to incidents.Uptime and performance of SOC tools and technologies.Accuracy and completeness of incident documentation.Contribution to process improvement and automation.Working Conditions: On-call availability for critical incidents.On-site work based on organizational policies. #J-18808-Ljbffr