Security Operations Center – Cyber Security Analyst (L2)

Job Description

Role Description:
The Cyber Security Analyst will monitor cybersecurity solutions to detect and analyze potential system compromises, perform root cause analysis, and support remediation efforts.
This role requires a strong technical understanding of cybersecurity concepts and a passion to develop as an expert in the field.

The candidate must have hands-on experience with SIEM solutions, threat hunting, and incident response. They will work closely with operational staff at customer sites and be responsible for researching emerging threats and communicating associated risks.

Roles & Responsibilities:
Act as escalation point and Subject Matter Expert (SME) on security issues

Analyze and validate security alerts and incidents

Create/update incidents in the case management system

Notify customers and support throughout the incident management lifecycle

Track case progress and provide analysis updates

Collaborate with stakeholders to maintain strong working relationships

Provide on-call support for incident investigations

Conduct post-incident reviews and develop operational metrics

Mentor junior colleagues and develop training materials

Analyze threat intelligence and share insights with relevant teams

Develop use cases for security monitoring and model threats

Hunt for IoCs, IoAs, APTs, and related TTPs

Develop repeatable threat hunting tactics

Integrate standard/non-standard logs into SIEM systems

Enhance SOC procedures and contribute to continuous improvement

Identify process improvement opportunities for better service delivery

Desired Candidate Profile

Any Nationality

Any Graduation

Any

Required Skills:
Troubleshooting of network and Windows/*nix connectivity issues
Understanding of TCP/IP, network traffic, and log analysis

Strong knowledge of OS, network architecture, and system design principles

Experience with cybersecurity tools like SIEM, EDR, SOAR

Knowledge of cyber threats, vulnerabilities, and mitigation strategies

Familiarity with key SOC technologies: ArcSight, Splunk, IBM QRadar, etc.

Ability to collaborate with both technical and non-technical stakeholders

Strong problem-solving skills and ability to remain calm under pressure

Excellent written and verbal communication skills

Educational Qualifications:
Relevant degree in IT, cybersecurity, or related field

One or more relevant industry certifications

Desirable Qualifications:

Experience in the Middle East region

Prior work in MSSP or MDR environments

Familiarity with 24/7 security operations

Exposure to multiple SIEM and EDR solutions

Industry certifications such as GSOC, BTL1, MBT, etc.