{bc}
linkedin

Lead Analyst - SOC Monitoring CPX

TALENTMATE
Abu Dhabi, UAE
Full Time
Lead
5 days ago
SIEMIncident ResponseThreat HuntingVulnerability ManagementCISSPCISM
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

SIEMIncident ResponseThreat Hunting
Smart Apply

Full Job Posting

Overview

  • The Lead SOC Analyst is responsible for managing the day to day activities of the SOC Monitoring, Incident Detection, and Response Operations.
  • The role involves collaborating with internal and client teams to identify and respond to threats and vulnerabilities.

SOC Operations Management

  • Lead and manage daily SOC activities and ensure efficient monitoring of security systems.
  • Oversee the triage, investigation, and resolution of security incidents.
  • Ensure incident handling aligns with defined SLAs and escalation procedures.

Incident Response & Threat Management

  • Coordinate and lead incident response efforts.
  • Analyze and respond to complex threats using threat intelligence and advanced detection techniques.
  • Oversee triage, investigation, and remediation of security events and incidents.
  • Lead major incident investigations and coordinate with other teams.

Team Leadership & Development

  • Mentor and guide SOC analysts.
  • Conduct training sessions and promote continuous learning.

Security Tools & SIEM Management

  • Manage and optimize SIEM tools and other security technologies.
  • Ensure effective integration of tools for comprehensive monitoring.
  • Correlate security events from SIEM, EDR, Firewall, IDS/IPS etc.
  • Validate and fine tune detection rules, correlation searches, and threat models.
  • Identify automation opportunities to reduce MTTD and MTTR.

Threat Hunting & Vulnerability Management

  • Proactively identify threats by conducting threat hunting exercises.
  • Oversee vulnerability scanning and patch management.
  • Work closely with CTI and Threat Hunters to integrate IOCs, TTPs, and MITRE ATT&CK coverage.

Reporting & Compliance

  • Generate detailed reports on incidents, trends, and SOC performance.
  • Ensure compliance with industry standards and regulatory requirements.
  • Provide regular operational metrics and incident reports to senior management.

Collaboration & Strategy

  • Work closely with IT, Cloud, Application, Risk, and Security teams for cross functional incident handling.
  • Contribute to the development of security policies and procedures.

Qualifications

  • Bachelor’s degree in engineering, computer science, information systems, or quantitative fields.
  • ISC² CISSP, CISM, or GIAC Certifications.
  • Minimum of 10+ years relevant experience in Information/Cyber Security in a large scale ICT environment.
  • High level understanding of TCP/IP protocol and OSI Seven Layer Model.
  • Knowledge of security best practices and concepts.
  • Knowledge of Windows and/or Unix based systems/architectures and related security.
  • Sound knowledge of LAN/WAN technologies.
  • Expertise in incident response and handling methodologies.
  • Knowledge of Cyber kill chain, blockchain, and other IR frameworks.
  • Knowledge of Defense in depth techniques.
  • Knowledge of security event correlation and analytics tools.
  • Skill in recognizing and categorizing types of vulnerabilities and associated attacks.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at TALENTMATE