{bc}
indeed

Senior SOC Analyst

PROOFOPS
Dubai, UAE
Full Time
Senior
Onsite
AED 8,000/month / month
Yesterday
SIEMMicrosoft SentinelSplunkIBM QRadarElastic SIEMEDR
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

SIEMMicrosoft SentinelSplunk
Smart Apply

Full Job Posting

About ProofOps

  • ProofOps is a cybersecurity services company helping organizations across the UAE and Middle East strengthen their security posture through practical, outcome driven programs.
  • We deliver a broad portfolio of Managed Security Services, including Managed SOC, DFIR, VAPT, Brand Protection, and Network Security Services.
  • Our Managed SOC provides 24/7 threat monitoring, detection, and response for enterprise customers across the region.

Job Overview

  • We are looking for a technically skilled Senior SOC Analyst to join our Security Operations team.
  • This is an L3 level role responsible for complex security investigations, incident response, threat hunting, detection improvement, and mentoring junior analysts.
  • The ideal candidate should have strong experience working in a SOC environment, handling real security incidents, improving detection capabilities, and supporting a multi customer MSSP environment.

Key Responsibilities

  • Perform advanced triage, investigation, and analysis of security alerts across multiple SIEM environments.
  • Act as an L3 escalation point for complex and high severity security incidents.
  • Lead incident response activities including containment, eradication, recovery, and post incident reviews.
  • Conduct proactive threat hunting using threat intelligence, MITRE ATT&CK framework, and customer specific risk profiles.
  • Develop and tune SIEM detection rules, correlation logic, and alert thresholds.
  • Create and maintain incident response playbooks and SOC runbooks.
  • Prepare detailed incident reports and post incident documentation.
  • Analyze threat intelligence, IOCs, TTPs, and attacker behavior.
  • Investigate security events across EDR platforms, network logs, identity systems, cloud environments, and application logs.
  • Provide technical guidance and mentorship to L1/L2 SOC analysts.
  • Support customer onboarding activities including log source validation, baseline reviews, and security use case configuration.
  • Participate in SOC shift handovers and maintain investigation continuity.

Required Skills & Experience

  • 3–6 years of hands on experience in SOC or Security Operations.
  • Minimum 1–2 years of L2/L3 SOC analyst experience.
  • Experience handling security alerts, investigations, and incident response in a live SOC environment.
  • Strong experience with at least one SIEM platform: Microsoft Sentinel, Splunk, IBM QRadar, Elastic SIEM, or similar.
  • Experience with EDR solutions: CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint, or similar.
  • Strong understanding of MITRE ATT&CK Framework, threat hunting methodologies, and detection engineering concepts.
  • Knowledge of network security fundamentals: TCP/IP, DNS, HTTP/S, firewall logs, proxy logs, network attack patterns.
  • Experience analyzing Windows and Linux security artifacts: event logs, process trees, registry, scheduled tasks, persistence mechanisms.
  • Ability to create professional incident reports and customer documentation.

Required Certifications

  • Candidates must hold at least one of: Blue Team Level 2 (BTL2), GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), or CompTIA CASP+.

Preferred Certifications

  • Blue Team Level 1 (BTL1), Microsoft SC 200, Certified SOC Analyst (CSA), CompTIA CySA+, GIAC Cyber Threat Intelligence (GCTI).

Preferred Qualifications

  • Experience with MSSP or multi tenant SOC environments.
  • Experience with SOAR platforms: Microsoft Sentinel SOAR, Palo Alto Cortex XSOAR, Splunk SOAR.
  • Cloud security monitoring: Azure, AWS, GCP.
  • Digital forensics activities: memory analysis, disk analysis, browser artifacts, timeline analysis.
  • Threat intelligence platforms: MISP, OpenCTI, Recorded Future.
  • Security automation using Python, PowerShell, KQL.
  • UAE/Middle East SOC delivery experience and familiarity with regional security frameworks.

Soft Skills

  • Strong analytical and investigation skills.
  • Calm decision making during high severity incidents.
  • Proactive approach toward learning and threat research.
  • Strong communication skills with technical and non technical stakeholders.
  • Ability to mentor junior team members.
  • High attention to detail in reports, documentation, and case management.

What We Offer

  • Competitive compensation based on experience and certifications.
  • Annual training and certification budget.
  • Exposure to real security incidents and enterprise environments.
  • Opportunity to work with modern SOC tools and automation platforms.
  • Career growth opportunities into SOC Team Lead, Detection Engineer, or DFIR Analyst.
  • A cybersecurity focused culture built around technical excellence, ownership, and continuous learning.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at PROOFOPS