SOC Analyst L2
publiée le 5/17/2026 6:36:36 PM
Security Monitoring & Incident Investigation: Perform advanced analysis and investigation of security alerts escalated from L1 analysts; validate, triage, and respond to security incidents across network, endpoint, cloud, and application environments; conduct root cause analysis; perform log analysis using SIEM and other security tools; lead containment, eradication, and recovery. Detection & Use Case Improvement: tune and improve SIEM detection rules; assist in development and validation of new use cases and correlation rules; provide feedback to SOAR/SIEM engineering teams for automation opportunities; support mapping detections to MITRE ATT&CK. Required Skills & Experience: 5+ years in SOC/Security Operations/Incident Response; hands-on SIEM platforms (Splunk, QRadar, Sentinel, Elastic); strong understanding of incident response lifecycle; network protocols and security (TCP/IP, DNS, HTTP, TLS); endpoint security and EDR/XDR tools; experience analyzing firewall, IDS/IPS, proxy, email, and endpoint logs; familiarity with MITRE ATT&CK; experience investigating phishing and malware incidents. Apply by sharing CV at vikas.khuntia@flint-international.me with the position name in the subject line and include experience, current location, current salary, expected salary, and notice period. Riyadh, KSA
Voir cette mission avec l'extension Tarss