Senior SOC Analyst

We are seeking a highly skilled Senior SOC Analyst to join our Security Operations Center (SOC) team. The ideal candidate will have extensive experience in network operations, a strong foundation in networking fundamentals, and a proven track record in threat hunting, incident response, and incident investigations. Working closely with the SOC Manager, this role will play a critical part in safeguarding our organization s assets by proactively identifying, analyzing, and mitigating cyber threats.

Key Responsibilities:

• Threat Hunting & Detection: Proactively hunt for threats, identify anomalies, and develop detection strategies to uncover sophisticated attacks.
• Incident Response Leadership: Lead and coordinate incident response efforts, including containment, eradication, and recovery, ensuring timely and effective resolution.
• Incident Investigations: Conduct in-depth investigations into security incidents, perform root cause analysis, and document findings to prevent recurrence.
• Security Monitoring: Analyze security alerts from SIEM, EDR, and other monitoring tools to identify potential threats.
• Collaboration: Work closely with the SOC Manager to refine processes, improve SOC workflows, and mentor junior analysts.
• Network Security: Leverage expertise in networking (DNS, DHCP, firewalls, switches, etc.) to identify and mitigate network-based threats.
• Tool Management: Configure, maintain, and optimize security tools and platforms to enhance detection and response capabilities.
• Reporting & Documentation: Prepare detailed incident reports, metrics, and recommendations for leadership and cross-functional teams.
• Continuous Improvement: Stay current on emerging threats, vulnerabilities, and industry best practices to enhance SOC capabilities.

Required Qualifications:

• 5+ years of experience of combination of SOC, NOC, or network analyst role.
• Hands-on experience with threat hunting, incident response, and investigations.
• Prior NOC experience or background as a network analyst is highly preferred.

Technical Skills:

• Strong knowledge of networking fundamentals, including DNS, DHCP, firewalls, switches, and routing protocols.
• Proficiency with SIEM platforms (e.g., Splunk, Elastic, or similar), EDR tools, and network monitoring solutions.
• Familiarity with packet analysis tools (e.g., Wireshark) and threat intelligence platforms.

Certifications (Preferred):

• Cisco Certified Network Professional (CCNP) or CompTIA Security+.
• Additional certifications such as CEH, GCIH, or CISSP are a plus.

Soft Skills:

• Strong analytical and problem-solving skills with attention to detail.
• Excellent communication skills for presenting findings to technical and non-technical audiences.
• Ability to work under pressure in a fast-paced environment and lead cross-functional teams during incidents.

Preferred Qualifications:

• Experience scripting or automating tasks using Python, PowerShell, or similar.
• Familiarity with MITRE ATT&CK framework and other threat modeling methodologies