Security Operations Center (Soc) Analyst - Level 1

Monitoring and Threat Detection:
• Evaluate and prioritize security events based on severity and potential impact.
• Detect suspicious behaviors and patterns using event logs, network data, and other security tools.
• Actively monitor Microsoft Sentinel for security alerts and identify potential threats to the organization&039;s environment.
Incident Investigation:
• Correlate data from multiple sources to build a comprehensive picture of potential security incidents.
• Investigate alerts to identify indicators of compromise (IOCs) such as unauthorized access, malware activity, or phishing attempts.
• Document findings and maintain detailed records of all events and actions taken.
Escalation and Collaboration:
• Escalate verified security incidents to Level 2 analysts or the Incident Response team, providing detailed contextual information.
• Maintain communication with stakeholders to ensure timely updates during incidents.
• Collaborate with cross- functional teams to mitigate security risks effectively.
Initial Response and Remediation:
• Support efforts to reduce false positives by fine- tuning detection rules and alert configurations.
• Perform basic response actions under supervision, such as disabling compromised accounts, blocking malicious IPs, or containing suspicious activities.
Continuous Learning and Improvement:
• Participate in training programs to deepen your understanding of tools, techniques, and best practices.
• Contribute to the refinement of SOC processes and playbooks.
• Stay informed on cybersecurity trends, vulnerabilities, and emerging threats.

Certifications:• Preferred: CompTIA Security+, Microsoft Certified: Security Operations Analyst Associate, or equivalent entry- level cybersecurity certifications.

Education:• Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).

Technical Skills:
• Ability to analyze log data, correlate events, and identify suspicious activities.
• Familiarity with Microsoft Sentinel and other SIEM tools.
• Basic understanding of networking protocols (TCP/IP, DNS, VPNs) and operating system fundamentals.
• Knowledge of cybersecurity principles, common threat types, and attack methods.

Soft Skills:
• Ability to multitask and adapt in a fast- paced environment.
• Strong analytical thinking and attention to detail.
• Effective written and verbal communication skills to convey findings clearly.
• Team- oriented mindset with a willingness to learn and grow.
• Proven English communication skills supported by professional certifications such as IELTS, TOEIC, or BEC.

Experience:
• Hands- on experience with basic troubleshooting and security tools is a plus.
• 0–2 years of experience in a cybersecurity, IT support, or related technical role.

Clear and transparent career advancement path
14 days of annual leave, yearly teambuilding activities, periodic health check- ups
Company- provided computer and headset for work
Participation in social insurance, health insurance, and full benefits in accordance with labor law
No prior experience required – training on professional tasks and skills will be provided before starting the job.
Professional, dynamic working environment with free parking

Cập nhật gần nhất lúc: 2025-09-19 04:45:02