Cyber Security Analyst

Job Description

. We are seeking a skilled and proactive Cyber Security Analyst to join our Security Operations Center (SOC). The ideal candidate will be responsible for real-time security monitoring, incident investigation, and response across enterprise environments.

. This role requires strong expertise in threat detection, incident handling, and continuous improvement of SOC capabilities.

Key Responsibilities

. Security Monitoring & Incident Response Monitor, investigate, and respond to medium to high-severity security incidents across network, endpoint, cloud, and application environments

. Perform in-depth analysis of alerts, logs, and security telemetry to identify root cause, impact, and remediation actions

. Coordinate incident response activities with internal teams and external stakeholders when required

. Escalate critical incidents to management as per defined protocols

. Ensure all incidents are handled in accordance with SLAs, playbooks, and compliance requirements

. Threat Detection & Use Case Management Tune and optimize SIEM detection rules to improve detection accuracy and reduce false positives

. Analyze emerging threats and enhance detection use cases accordingly

. Continuous Improvement & SOC Maturity Contribute to the development and enhancement of SOC processes, runbooks, and playbooks

. Identify opportunities for automation using SOAR and AI-driven solutions

. Support initiatives to improve SOC efficiency and maturity

. Leadership & Mentorship Provide guidance and mentoring to junior SOC analysts Act as an escalation point for complex investigations

. Promote knowledge sharing, training, and continuous learning within the team

Required Skills & Experience

. Hands-on experience with SIEM platforms such as Splunk, Elasticsearch, Microsoft Sentinel, or Google SecOps Strong understanding of network, endpoint, identity, and cloud security concepts

. Experience analyzing logs from firewalls, EDR, IDS/IPS, cloud platforms, and operating systems

. Knowledge of incident response methodologies and digital forensics fundamentals

. Experience 3-5 years of experience in Cyber Security Operations, SOC, or Incident

. Response roles Proven ability to independently handle medium to high-severity incidents

. Experience working in regulated environments (financial services, healthcare, government) is an advantage

. Soft Skills Strong analytical and problem-solving abilities

. Ability to remain calm and structured under pressure High level of ownership, accountability, and attention to detail

Preferred / Nice-to-Have

. Experience with SOAR platforms and security automation

. Cloud security expertise (AWS, Azure, GCP) Scripting/query skills (SPL, KQL, SQL, Python)

. Experience in SOC transformation or SIEM migration projects

. Certifications (Preferred) GCIA, GCIH, GCED SIEM-related certifications (Elastic, Google SecOps, Microsoft Sentinel, or equivalent)vv