Senior SOC Analyst
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
ITHR Technologies is seeking a Senior SOC Analyst to join their Managed Security Services team in the UAE. The role involves L3-level alert investigation, incident response, threat hunting, and SIEM tuning in a multi-customer MSSP environment.
Key Skills for This Role
Responsibilities
- Perform in depth triage, investigation, and analysis of security alerts across multiple customer SIEM environments
- Act as the L3 escalation point for complex or high severity incidents
- Lead incident response activities including containment, eradication, recovery, and post incident review
- Conduct proactive threat hunting using MITRE ATT&CK, threat intelligence, and customer specific risk profiles
- Develop and tune SIEM detection rules, correlation logic, and alert thresholds
- Develop and maintain SOC runbooks and incident response playbooks
- Produce high quality incident reports suitable for both technical and business audiences
- Integrate and operationalise threat intelligence including IOCs, TTPs, and threat actor profiles
- Investigate activity across EDR, network, identity, cloud, and application log sources
- Mentor and guide L1 and L2 analysts through technical coaching and case reviews
Requirements
- 3 6 years of hands on SOC or Security Operations experience
- Minimum 1 2 years operating at an L2/L3 level
- Strong experience performing alert triage, incident investigation, and response
- Hands on experience with one or more SIEM platforms (Microsoft Sentinel, Splunk, IBM QRadar, Elastic SIEM)
- Experience with EDR solutions (CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint)
- Strong understanding of MITRE ATT&CK
- Solid knowledge of TCP/IP, DNS, HTTP/S, firewalls, proxies, and network attack techniques
- Experience analyzing Windows and Linux artifacts
- Excellent documentation and customer reporting skills
- Must possess at least one mandatory certification (BTL2, GCIH, GCFA, CompTIA CASP+)
Full Job Posting
Role Overview
- We are looking for a technically strong and experienced Senior SOC Analyst to join the ITHR Security Operations team.
- This is a hands on L3 level role where you will own complex alert investigations, lead incident response activities, conduct proactive threat hunting, and continuously improve detection capabilities across customer environments.
- As a senior member of the SOC, you will act as the escalation point for junior analysts, contribute to playbook development, and maintain the quality and consistency of SOC deliverables.
Key Responsibilities
- Perform in depth triage, investigation, and analysis of security alerts across multiple customer SIEM environments.
- Act as the L3 escalation point for complex or high severity incidents escalated by L1/L2 analysts.
- Lead incident response activities including containment, eradication, recovery, and post incident review.
- Conduct proactive threat hunting using MITRE ATT&CK, threat intelligence, and customer specific risk profiles.
- Develop and tune SIEM detection rules, correlation logic, and alert thresholds.
- Develop and maintain SOC runbooks and incident response playbooks.
- Produce high quality incident reports suitable for both technical and business audiences.
- Integrate and operationalise threat intelligence including IOCs, TTPs, and threat actor profiles.
- Investigate activity across EDR, network, identity, cloud, and application log sources.
- Mentor and guide L1 and L2 analysts through technical coaching and case reviews.
- Support customer onboarding including log source validation, baseline reviews, and detection use case configuration.
- Participate in shift handovers ensuring complete transfer of active investigations and operational awareness.
Required Qualifications (Must Have)
- 3–6 years of hands on SOC or Security Operations experience.
- Minimum 1–2 years operating at an L2/L3 level.
- Strong experience performing alert triage, incident investigation, and response.
- MSSP experience is highly desirable.
- Hands on experience with one or more SIEM platforms: Microsoft Sentinel, Splunk, IBM QRadar, Elastic SIEM.
- Experience with EDR solutions including CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint.
- Strong understanding of MITRE ATT&CK.
- Solid knowledge of TCP/IP, DNS, HTTP/S, firewalls, proxies, and network attack techniques.
- Experience analysing Windows and Linux artefacts including event logs, process trees, registry, persistence mechanisms, and scheduled tasks.
- Excellent documentation and customer reporting skills.
- Must possess at least one of the mandatory certifications listed below.
Certifications
- Mandatory (at least one): Blue Team Level 2 (BTL2), GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), CompTIA CASP+.
- Advantageous: Blue Team Level 1 (BTL1), Microsoft SC 200 Security Operations Analyst, EC Council Certified SOC Analyst (CSA), CompTIA CySA+, GIAC Cyber Threat Intelligence (GCTI).
Preferred Qualifications (Nice to Have)
- MSSP or multi tenant SOC experience.
- Experience with SOAR platforms such as Microsoft Sentinel SOAR, Palo Alto XSOAR, or Splunk SOAR.
- Cloud security monitoring experience across Azure, AWS, or GCP.
- Basic digital forensics experience.
- Experience using Threat Intelligence Platforms such as MISP, OpenCTI, or Recorded Future.
- Scripting skills using Python, PowerShell, or KQL.
- Experience supporting customers across the UAE or Middle East.
- Familiarity with regional compliance frameworks such as UAE IA, NESA, or SAMA.
Soft Skills
- Strong analytical and investigative mindset.
- Calm under pressure during major incidents.
- Passion for continuous learning and threat research.
- Excellent verbal and written communication skills.
- Team player with mentoring capabilities.
- High attention to detail and documentation quality.
What We Offer
- Competitive salary aligned with experience and certifications.
- Annual training and certification budget.
- Exposure to genuine enterprise cyber incidents across multiple industries.
- Opportunity to work with advanced SIEM, SOAR, EDR, and Threat Intelligence platforms.
- Clear career progression into SOC Team Lead, Detection Engineer, DFIR Analyst, or Cybersecurity Consultant.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Qode
GRC Specialist - UAE National
Dubai, UAE
Qode is seeking a GRC Specialist to support governance, risk, and compliance functions in banking and financial services. The role involves risk assessments, policy management, audit coordination, and regulatory complian
Senior SOC Analyst
Abu Dhabi, UAE
ITHR Technologies is seeking a Senior SOC Analyst for their Managed Security Services team. The role involves L3-level alert investigation, incident response, threat hunting, and SIEM tuning in a multi-customer MSSP envi
Network Security Engineer
Dubai, UAE
ITHR is seeking an experienced Network Security Engineer for a hands-on role spanning the full project lifecycle. You will design, deploy, and configure next-generation firewalls, develop PoC environments, and produce cu
SOC Team Lead
, UAE
ITHR is seeking a technically strong and operationally experienced SOC Team Lead to lead a team of SOC analysts, oversee threat detection and incident response, and drive continuous improvements in detection engineering
SOC Team Lead
Abu Dhabi, UAE
ITHR seeks a SOC Team Lead to lead a team of SOC analysts (L1/L2/L3) in the UAE, overseeing threat detection, incident response, and continuous improvement of security operations. The role combines technical depth with p
Network Security Engineer
Abu Dhabi, UAE
ITHR seeks a Network Security Engineer for hands-on delivery of enterprise network security solutions including NGFW, VPN, and SASE. Requires 4-8 years of network security experience, deep expertise in Palo Alto, Fortine
Pre-Sales Consultant - Technology & Cybersecurity
Abu Dhabi, UAE
ITHR is seeking a Pre-Sales Consultant to bridge customer challenges with technology solutions in cybersecurity, ERP, and cloud services. The role requires 4-6+ years of pre-sales experience, strong technical fundamental
SAP MM S/4HANA Consultant
Dubai, UAE
ITHR Technologies Consulting LLC is seeking an experienced SAP MM S/4HANA Consultant for a permanent hybrid role in Dubai. The consultant will lead end-to-end implementations, optimize procurement and supply chain proces
GRC Specialist - UAE National
Dubai, UAE
Senior SOC Analyst
Abu Dhabi, UAE
Network Security Engineer
Dubai, UAE
SOC Team Lead
, UAE
SOC Team Lead
Abu Dhabi, UAE
Network Security Engineer
Abu Dhabi, UAE
Pre-Sales Consultant - Technology & Cybersecurity
Abu Dhabi, UAE
SAP MM S/4HANA Consultant
Dubai, UAE