SOC L2 Analyst
Job details
About Us: We are a dynamic and forward-thinking team committed to providing top-tier security services. Our team works across all major cloud environments (Microsoft Azure, Amazon AWS, and Google GCP) and supports a diverse range of operating systems including macOS, Windows, and Linux. Role Overview: We are seeking capable, motivated, and technically proficient L2 SOC Analysts who are passionate about security, professional development, and proactive security measures. This role is ideal for junior analysts with some SOC and SIEM exposure or highly motivated individuals with practical experience in setting up home labs, logging, cloud security, and entry-level certifications. Key Responsibilities:
- Continuous Security Monitoring: Provide 24/7/365 security monitoring and incident handling across a complex network.
- Incident Response: Support threat and vulnerability management, threat hunting, incident response, and purple teaming tasks.
- Use Case Development: Assist in the development of detection analytics and use cases.
- Tabletop Exercises: Participate in incident response exercises to enhance readiness.
- Threat Research: Conduct research into new threats, identifying new Indicators of Compromise (IOCs), Tactics, Techniques, and Procedures (TTPs), and threat groups.
- Shift Work: Work in shifts with efficient and accurate handover procedures. 12-hour shifts, 4 days on / 4 days off rotation (Day & Night).
- Automation and Procedures: Identify improvements in automation and investigation procedures.
- Red Team Collaboration: Work with the red team to identify gaps or weaknesses in security coverage.
- Threat Hunting: Create threat hunting use cases through security research and threat intelligence.
- SLA Adherence: Adhere to Service Level Agreements (SLAs) for security investigations.
- Experience: Minimum of 1-2 years in a similar role or demonstrable relevant experience through self-study.
- Certifications: Hold at least one of the following certifications (or working towards):
- GIAC Certified Intrusion Analyst (GCIA)
- GIAC Continuous Monitoring (GMON)
- GIAC Defending Advanced Threats (GDAT)
- GIAC Certified Detection Analyst (GCDA)
- CompTIA CySA+/Sec+/Net+
- CREST Practitioner Threat Intelligence Analyst
- CREST Practitioner Intrusion Analyst
- CREST Practitioner Security Analyst
- Offensive Security Certified Professional (OSCP)
- Technical Skills: Experience with SIEM (such as Azure Sentinel), Microsoft security stack, Endpoint Detection and Response (EDR), Firewalls (FW), and Cloud Security.
- Location: Must be able to work in the Abu Dhabi office for shifts.
- Commitment: Willing to work on a full-time permanent basis.
- Passion for Security: Demonstrable passion for security and willingness to progress within the role.
- Cloud Security: Knowledge and experience in securing cloud environments (Azure, AWS, GCP).
- Operating Systems: Proficiency in macOS, Windows, and Linux.
- Collaboration: Ability to work effectively within a team and support senior analysts.
- Professional Development: Opportunities for continuous learning and growth.
- Dynamic Environment: Work with cutting-edge technologies and a diverse team.
- Impactful Work: Contribute to the security and resilience of our organisation.
- Leadership opportunities and career growth potential.
- Premium Health Insurance for employee and dependents.
- Visa Costs Covered Including Flight ticket to Abu Dhabi.
- Gratuity as per EOSB.
- 25 paid annual leaves.
- Yearly Airfare Allowance to Home Country.
- Competitive Salary.
Apply safely
To stay safe in your job search, information on common scams and to get free expert advice, we recommend that you visit SAFERjobs, a non-profit, joint industry and law enforcement organization working to combat job scams.