Security Operations Centre Analyst

Responsibilities:

• Threat Detection and Monitoring: Continuously monitor security alerts and events using SIEM & cybersecurity tools to detect potential threats and vulnerabilities.
• Investigating, documenting, and reporting on any information security (InfoSec) issues as well as emerging trends.
• Security Tool Management: Configure, manage, and optimize security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and antivirus software.
• Computer forensics: Must be familiar with computer forensic techniques that can help prevent cybercrime. Tasks include collecting, analyzing, and reporting security data.
• Incident Response: Investigate security incidents, respond to security breaches, implement corrective actions and prepare disaster recovery plans
• Security Analysis: Analyze security data to identify trends, patterns, and anomalies, providing actionable insights to mitigate risks.
• Reporting and Documentation: Document incidents, create reports on security events and maintain accurate records of investigations and resolutions.
• Collaboration and Communication: Work with other IT and security teams to coordinate responses to threats and communicate findings to relevant stakeholders. Work closely with other IT and cybersecurity teams to resolve security issues. Collaborate with third-party vendors, consultants, and managed security service providers (MSSPs) as needed.
• Continuous Improvement: Stay updated with the latest cyber security trends, threat landscapes, and best practices to enhance SOC operations. 

Requirements:

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Technical Skills: Proficiency in SIEM tools (e.g., Splunk, AlienVault), knowledge of network protocols, familiarity with IDS/IPS systems, and understanding of firewall management. Familiarity with scripting languages (e.g., Python, PowerShell) for automation Familiarity with scripting languages (e.g., Python, PowerShell) for automation.
• Experience with incident response and forensic analysis tools.
• Understanding of threat intelligence platforms and methodologies.
• Relevant certifications like CompTIA Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or GIAC Security Essentials (GSEC) etc
• 1-5 years of experience in IT security, network security, or a similar role in a security operations environment.
• Strong analytical and problem-solving skills, attention to detail, effective communication