Job Summary
As a SOC Analyst at Cyber8, you will play acritical role in our 24x7 Security Operations Centre. You will monitor and analyze security events across multiple data sources, respond swiftly to potential threats, and drive continuous improvements in our security posture. Your expertise will be key in detecting and mitigating risks, ensuring our clients' environments remain secure, and contributing to our overall security strategy.
Key Responsibilities
- Event Monitoring &Analysis: Continuously monitor network, endpoint, and log sources to identify potential security incidents. Quickly analyze incoming alerts and prioritize them based on severity and impact.
- Incident Detection &Response: Investigate suspicious activities and security events to determine root causes and potential threats. Coordinate with internal teams and, when necessary, engage specialized groups to manage and resolve incidents.
- Process Improvement: Perform quality reviews on security tickets and engagements to ensure high standards are maintained. Identify opportunities for automation and optimization within our security monitoring and response workflows.
- Collaboration &Mentorship: Share technical expertise with colleagues to promote best practices in threat detection and incident response. Provide coaching and guidance to team members as needed.
- Documentation &Communication: Maintain detailed records of security incidents and investigations. Clearly communicate incident findings and recommended remediation steps to relevant stakeholders.
Qualifications & Experience
Education:
- Bachelor/Masters in IT/Computer Science/ Cybersecurity
Technical Experience:
- Minimum 1+ years of experience in Information Security, Network Security, or Cyber Security roles.
- Prior hands-on experience in roles such as Network Administrator, System Administrator, or Cloud Administrator is highly desirable.
Core Competencies
- Proficient in analyzing security events and logs from diverse IT systems.
- Strong knowledge in at least two of the following areas:
- Networking: Understanding of common protocols, server/client infrastructure, and network devices (routers, switches, etc.).
- Perimeter Security: Experience with firewalls, IDS/IPS, UTMs, and related technologies.
- Authentication &Identity Management: Familiarity with Active Directory, SSO, MFA, etc.
- Cloud Technologies: Working knowledge of cloud platforms such as AWS, Azure, or GCP.
- Endpoint Security: Experience with EDR, AV, or MDM solutions.
- SaaS Platforms: Understanding of collaboration tools like O365, GSuite, or other enterprise applications.
Scripting & Automation:
Ability to use scripting languages such as Python, Bash, or PowerShell to streamline incident response and data analysis.
Soft Skills:
- Excellent written and verbal communication skills.
- A proactive, positive attitude with a willingness to learn and continuously improve.
What We Offer:
- A dynamic work environment with a strong culture of innovation and professional growth.
- Opportunities to work on challenging projects with cutting-edge security technologies.
- Competitive compensation and benefits package.
Join Cyber8 and be a key player in defending our digital future!
.webp){kind=small}
