Role Overview

You are the operational backbone of the SOC, ensuring that alerts are analyzed, incidents are managed, and responses are executed efficiently. You’ll work across a variety of technologies, including SIEM, EDR, DLP, and NIDS systems. You’ll contribute to detection tuning and daily operational excellence.

Responsibilities

• Responsible for continuous monitoring of alerts, triaging potential incidents, and executing playbooks.
• Conduct correlation and enrichment activities to validate detections.
• Escalate verified incidents and support remediation activities.
• Collaborate on fine‑tuning detection rules and minimizing false positives.
• Maintain meticulous incident documentation and ensure shift handover quality.
• Support forensic investigations and contribute to SOC process improvements.

Requirements

• 3–5 years of experience in SOC operations or cybersecurity monitoring.