SOC L1 Engineer

SOC L1 Engineer

Join our dynamic security team as a SOC L1 Engineer in this permanent, onsite position. This is an excellent opportunity for an aspiring cybersecurity professional to contribute to critical security operations, developing foundational skills in threat detection and incident response. You will play a vital role in safeguarding our organization's digital assets by meticulously monitoring, analyzing, and escalating security events.

Key Responsibilities

• Monitor security alerts and events from various SIEM, EDR, and network monitoring tools to identify potential security threats.
• Perform initial triage and investigation of security incidents, gathering relevant log data and contextual information.
• Accurately document all security events, incidents, and actions taken within our RACI database and ticketing systems.
• Escalate confirmed security incidents to higher-level SOC analysts and relevant stakeholders according to defined procedures.
• Contribute to the ongoing refinement of alert tuning and operational procedures to improve detection and response efficiency.
• Utilize vulnerability scanning tools to identify potential weaknesses and support remediation efforts.
• Collaborate effectively with team members to ensure comprehensive security coverage and prompt incident resolution.

Required Qualifications

Experience: Minimum of 1 year of professional experience in a Security Operations Center (SOC) or related cybersecurity role.

Technical Skills:

• Proficiency with Security Information and Event Management (SIEM) platforms (e.g., Splunk, QRadar, Microsoft Sentinel).
• Experience with Network Monitoring tools.
• Familiarity with Endpoint Detection and Response (EDR) solutions.
• Understanding of Incident Response and Threat Detection principles.
• Basic knowledge of Log Analysis techniques.
• Experience with Vulnerability Scanning tools.
• Familiarity with Wireshark for network traffic analysis.
• Basic scripting capabilities (e.g., Python, PowerShell) are beneficial.

Soft Skills:

• Strong Communication skills, both written and verbal.
• Excellent Problem-Solving abilities.
• Exceptional Attention to Detail.
• Proven Teamwork capabilities.
• Strong Analytical Thinking skills.

Preferred Qualifications

• Experience with Palo Alto Networks security products.
• Familiarity with Security Orchestration, Automation & Response (SOAR) platforms.
• English language proficiency.

What We Offer

• Compensation: Competitive compensation commensurate with experience and skills.
• Benefits: A comprehensive and competitive benefits package.
• Work Environment: Opportunity to work in a stable, onsite role within a collaborative and supportive security team.
• Growth: A platform to build and expand your cybersecurity expertise in a crucial operational environment.

Key skills/competency

• SIEM
• EDR
• Network Monitoring
• Incident Response
• Threat Detection
• Log Analysis
• Vulnerability Scanning
• Wireshark
• Python
• PowerShell