SOC Analyst L1

Client of Emploipartner

صاحب عمل نشط

نشرت قبل 5 ساعات

الخبرة

2 - 4 سنوات

موقع العمل

Algeria - Algeria

التعليم

أي تخرج()

الجنسية

أي جنسية

جنس

غير مذكور

عدد الشواغر

1 عدد الشواغر

الوصف الوظيفي

الأدوار والمسؤوليات

Surveillance & d tection :

  • Ensure continuous monitoring of security solutions (SIEM, EDR, NDR, Anti-DDoS, Firewall, sandbox, network equipment, etc.).
  • Verify that logs are being correctly retrieved and that monitoring sources are available.
  • Report any anomalies or malfunctions of the security tools.

Analyse & qualification:

  • Analyze and qualify alerts from different detection tools.
  • Identify false positives and document treated incidents.
  • Enhance alerts using Threat Intelligence sources (IP, domains, hash).
  • Perform first-level incident analyses (simple timeline, identification of IOCs).

Incident response:

  • Apply the operational procedures as well as the level 1 incident response playbooks.
  • Perform the first remediation actions (isolate the machine, block IP addresses, deactivate compromised accounts, etc.).
  • Escalate confirmed or complex incidents to L2 level or the SOC manager.

Management & reporting:

  • Manage incident tickets (creation, tracking and closure) via the ddi tool.
  • Ensure complete traceability of actions performed during shifts.

Coordination & communication :

  • Ensure smooth handovers between teams to guarantee continuity of service.
  • Collaborating with technical teams (network, systems, development) in the context of incident resolution.

Continuous improvement & monitoring:

  • Participate in the continuous improvement of detection rules (SIEM tuning, reduction of false positives).
  • Contribute to updating the playbooks and SOC procedures.
  • To ensure security monitoring of emerging threats.
  • Participate in simulation exercises (incident management).
  • Bachelor's degree (BAC+3) or Master's degree (BAC+5) in cybersecurity or equivalent field.
  • Solid basic knowledge in information systems security.
  • Prior experience in cybersecurity or systems/network administration is preferred.
  • Experience in a SOC environment is an asset.
  • Good understanding of Cloud and Datacenter environments.
  • Log analysis capabilities (Windows, Linux and security solutions).
  • Good mastery of the MITRE ATT&CK framework.
  • Experience with SIEM, EDR or XDR tools.
  • Knowledge of Threat Hunting and proactive detection (IOC, TTP, LOLBins).
  • Solid foundations in networking: TCP/IP, DNS, HTTP, SMTP.
  • Ability to analyze packet captures using tools like Wireshark and tcpdump.

القطاع المهني للشركة

  • التجنيد
  • شركة التوظيف
  • البحث التنفيذي

المجال الوظيفي / القسم

  • سوفت وير تقنية المعلومات

الكلمات الرئيسية

  • SOC Analyst L1

تنويه: نوكري غلف هو مجرد منصة لجمع الباحثين عن عمل وأصحاب العمل معا. وينصح المتقدمون بالبحث في حسن نية صاحب العمل المحتمل بشكل مستقل. نحن لا نؤيد أي طلبات لدفع الأموال وننصح بشدة ضد تبادل المعلومات الشخصية أو المصرفية ذات الصلة. نوصي أيضا زيارة نصائح أمنية للمزيد من المعلومات. إذا كنت تشك في أي احتيال أو سوء تصرف ، راسلنا عبر البريد الإلكتروني abuse@naukrigulf.com

Client of Emploipartner

https://www.emploipartner.com/en/jobs/68842