Security Analyst L2 (Tier 2 SOC Analyst)
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
iConnect IT Business Solutions seeks a Security Analyst L2 to serve as escalation point for Tier 1 analysts, performing deep-dive investigations, threat hunting, and incident response in a managed security operations center.
Key Skills for This Role
Responsibilities
- Perform in depth analysis of escalated alerts, determining scope, root cause, and business impact through multi source log correlation and telemetry review
- Proactively search for indicators of compromise and hidden threats across client environments using behavioral analytics and threat intelligence
- Lead containment, eradication, and recovery activities for confirmed security incidents; coordinate actions across client and internal teams
- Conduct basic static and dynamic analysis of suspicious files and artifacts
- Support SIEM health monitoring, log source onboarding troubleshooting, and detection rule tuning to reduce false positives
- Author, maintain, and refine SOC runbooks, correlation rules, and response procedures based on emerging threats
- Produce clear incident reports, post incident summaries, and executive level dashboards for client stakeholders
- Guide and support L1 analysts on triage techniques, escalation decisions, and investigative methodology
Requirements
- 4–7 years in SOC, incident response, or cybersecurity operations
- Bachelor's degree in IT, Cybersecurity, Computer Science, or related field
- Advanced experience with SIEM platforms including log correlation, parser management, and detection rule tuning
- Strong knowledge of endpoint, network, email, and cloud security telemetry (Azure, Microsoft 365, Entra ID)
- Hands on experience with EDR platforms, packet analysis (Wireshark), and forensic investigation tools
- Solid understanding of the full attack lifecycle, MITRE ATT&CK, and threat intelligence frameworks
- Experience with root cause analysis across multi source telemetry in complex, multi client environments
- Familiarity with scripting (Python, PowerShell) for alert automation and investigation support
- Relevant certifications preferred: CySA+, GCIH, GCFE, CEH, or equivalent
Full Job Posting
Role Overview
- As a Security Analyst L2, you will serve as the escalation point for Tier 1 analysts, performing deep dive investigations, threat hunting, and leading incident response activities across a portfolio of client environments in a fast paced managed security operation.
Key Details
- Location: Dubai, UAE (Candidates must be currently based in the UAE)
- Experience: 4–7 years in SOC, incident response, or cybersecurity operations
- Availability: Immediate joiners preferred
- Work Schedule: Rotating shifts with on call responsibilities
- Education: Bachelor's degree in IT, Cybersecurity, Computer Science, or related field
- Compensation: Competitive market package
Core Responsibilities
- Incident Investigation: Perform in depth analysis of escalated alerts, determining scope, root cause, and business impact through multi source log correlation and telemetry review
- Threat Hunting: Proactively search for indicators of compromise and hidden threats across client environments using behavioral analytics and threat intelligence
- Incident Response: Lead containment, eradication, and recovery activities for confirmed security incidents; coordinate actions across client and internal teams
- Malware Analysis: Conduct basic static and dynamic analysis of suspicious files and artifacts
- SIEM Health & Tuning: Support SIEM health monitoring, log source onboarding troubleshooting, and detection rule tuning to reduce false positives and improve signal quality
- Playbook Development: Author, maintain, and refine SOC runbooks, correlation rules, and response procedures based on emerging threats and lessons learned
- Client Reporting: Produce clear incident reports, post incident summaries, and where required, executive level dashboards for client stakeholders
- Mentoring: Guide and support L1 analysts on triage techniques, escalation decisions, and investigative methodology
Technical Skills & Qualifications
- Advanced experience with SIEM platforms including log correlation, parser management, and detection rule tuning
- Strong knowledge of endpoint, network, email, and cloud security telemetry (Azure, Microsoft 365, Entra ID)
- Hands on experience with EDR platforms, packet analysis (Wireshark), and forensic investigation tools
- Solid understanding of the full attack lifecycle, MITRE ATT&CK, and threat intelligence frameworks
- Experience with root cause analysis across multi source telemetry in complex, multi client environments
- Familiarity with scripting (Python, PowerShell) for alert automation, investigation support, and workflow improvement
- Experience with ticketing and case management platforms
- Relevant certifications preferred: CySA+, GCIH, GCFE, CEH, or equivalent
- Strong analytical mindset with the ability to lead investigations independently under pressure
- Hands on experience with network security technologies including firewalls, IDS/IPS, VPNs, and network traffic analysis for threat detection and incident response
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at iConnect IT Business Solutions DMCC
Cloud Security Specialist
Dubai, UAE
iConnect IT Business Solutions DMCC is looking for a Cloud Security Specialist to implement, manage, and improve security controls across Microsoft Azure environments. The role focuses on protecting cloud workloads, iden
Security Specialist
Dubai, UAE
iConnect IT Business Solutions is looking for a Security Specialist to implement, manage, and support enterprise endpoint and email security solutions. The role involves threat detection, security monitoring, incident in
Network Security Lead
Dubai, UAE
iConnect IT Business Solutions is seeking an experienced Network Security Lead to design, implement, and govern enterprise network security solutions across hybrid environments. The role requires 10-12 years of experienc
Network Security Specialist
Dubai, UAE
iConnect IT Business Solutions is looking for a Network Security Specialist to support the implementation, administration, and operation of enterprise network security solutions. The role focuses on firewall management,
Security Architect
Dubai, UAE
iConnect IT Business Solutions DMCC seeks an experienced Security Architect to define and govern enterprise security architecture across hybrid and multi-cloud environments. The role involves embedding security into solu
IAM Lead
Dubai, UAE
iConnect IT Business Solutions DMCC seeks an experienced IAM Lead to define, implement, and govern enterprise Identity and Access Management solutions. The role requires strong expertise in IAM architecture, identity gov
IAM Specialist
Dubai, UAE
iConnect IT Business Solutions is seeking an IAM Specialist to support enterprise Identity and Access Management solutions. The role involves identity lifecycle management, application onboarding, access governance, and
Security Analyst L1 (Tier 1 SOC Analyst)
Dubai, UAE
iConnect IT Business Solutions seeks a Tier 1 SOC Analyst to monitor security alerts, triage incidents, and escalate threats in a 24/7 environment. Requires 1-2 years SOC experience, SIEM knowledge, and relevant certific
Cloud Security Specialist
Dubai, UAE
Security Specialist
Dubai, UAE
Network Security Lead
Dubai, UAE
Network Security Specialist
Dubai, UAE
Security Architect
Dubai, UAE
IAM Lead
Dubai, UAE
IAM Specialist
Dubai, UAE
Security Analyst L1 (Tier 1 SOC Analyst)
Dubai, UAE