Soc Analyst L1
Send a job offer directly to this candidate
3.5 years of experience in Security Operations Center (SOC) monitoring and incident response, handling real-time security alerts and threats using SIEM tools. Hands-on experience with Microsoft Sentinel and IBM QRadar for security event monitoring, log analysis, and threat detection. Skilled in malware analysis and phishing email investigation, including analyzing suspicious attachments, URLs, and indicators of compromise (IOCs). Strong knowledge of Microsoft Defender for Endpoint for endpoint detection, threat analysis, and incident response.
Experience working with Microsoft security solutions such as Microsoft Defender ATP and Microsoft Defender for Cloud Apps for monitoring and securing enterprise environments.
Experience working in Agile methodology environments and using ServiceNow for incident management and ticket handling. Played a vital role as an SOC L1 Analyst, responsible for monitoring alerts, triaging security incidents, and collaborating with internal teams to identify and resolve false positives and true positives.
Experience in creating and maintaining Standard Operating Procedures (SOPs) for SOC processes and incident response workflows.
Experience in preparing WSR (Weekly Status Reports), DSR (Daily Status Reports), and MSR (Monthly Status Reports) for operational tracking and management updates. Skilled in preparing project status reports and dashboards using Microsoft Excel for security operations reporting and analysis.
Cybersecurity professional with 3.5 years of experience in Security Operations Center (SOC) operations and incident response. Experienced in 24×7 SIEM monitoring, real-time security event analysis, threat detection, and incident handling to identify, investigate, and mitigate cyber threats effectively. Hands-on expertise in phishing, spam, and malware analysis, including file analysis, IOC investigation, email header analysis, and coordination with antivirus vendors for signature updates and remediation.
Skilled in leveraging global threat intelligence feeds to enhance enterprise security posture and implement proactive preventive controls. Strong knowledge of risk management, compliance standards, and continuous security improvement practices, contributing to improved organizational resilience against evolving cyber threats.