Senior SOC Analyst
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
ProofOps in Dubai seeks a Senior SOC Analyst for L3-level security investigations, incident response, threat hunting, and detection improvement. The role requires 3-6 years of SOC experience, strong SIEM and EDR skills, and relevant certifications.
Key Skills for This Role
Responsibilities
- Perform advanced triage, investigation, and analysis of security alerts across multiple SIEM environments
- Act as L3 escalation point for complex and high severity security incidents
- Lead incident response activities including containment, eradication, recovery, and post incident reviews
- Conduct proactive threat hunting using threat intelligence, MITRE ATT&CK framework, and customer specific risk profiles
- Develop and tune SIEM detection rules, correlation logic, and alert thresholds
- Create and maintain incident response playbooks and SOC runbooks
- Prepare detailed incident reports and post incident documentation
- Analyze threat intelligence, IOCs, TTPs, and attacker behavior
- Investigate security events across EDR platforms, network logs, identity systems, cloud environments, and application logs
- Provide technical guidance and mentorship to L1/L2 SOC analysts
- Support customer onboarding activities including log source validation, baseline reviews, and security use case configuration
Requirements
- 3–6 years of hands on experience in SOC or Security Operations
- Minimum 1–2 years of L2/L3 SOC analyst experience
- Experience handling security alerts, investigations, and incident response in a live SOC environment
- Strong experience with at least one SIEM platform (Microsoft Sentinel, Splunk, IBM QRadar, Elastic SIEM, or similar)
- Experience with EDR solutions (CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint, or similar)
- Strong understanding of MITRE ATT&CK Framework, threat hunting methodologies, and detection engineering concepts
- Knowledge of network security fundamentals (TCP/IP, DNS, HTTP/S, firewall logs, proxy logs, network attack patterns)
- Experience analyzing Windows and Linux security artifacts (event logs, process trees, registry, scheduled tasks, persistence mechanisms)
- Must hold at least one of: BTL2, GCIH, GCFA, or CompTIA CASP+
- Ability to create professional incident reports and customer documentation
Full Job Posting
About ProofOps
- ProofOps is a cybersecurity services company helping organizations across the UAE and Middle East strengthen their security posture through practical, outcome driven programs.
- We deliver a broad portfolio of Managed Security Services, including Managed SOC, DFIR, VAPT, Brand Protection, and Network Security Services.
- Our Managed SOC provides 24/7 threat monitoring, detection, and response for enterprise customers across the region.
Job Overview
- We are looking for a technically skilled Senior SOC Analyst to join our Security Operations team.
- This is an L3 level role responsible for complex security investigations, incident response, threat hunting, detection improvement, and mentoring junior analysts.
- The ideal candidate should have strong experience working in a SOC environment, handling real security incidents, improving detection capabilities, and supporting a multi customer MSSP environment.
Key Responsibilities
- Perform advanced triage, investigation, and analysis of security alerts across multiple SIEM environments.
- Act as an L3 escalation point for complex and high severity security incidents.
- Lead incident response activities including containment, eradication, recovery, and post incident reviews.
- Conduct proactive threat hunting using threat intelligence, MITRE ATT&CK framework, and customer specific risk profiles.
- Develop and tune SIEM detection rules, correlation logic, and alert thresholds.
- Create and maintain incident response playbooks and SOC runbooks.
- Prepare detailed incident reports and post incident documentation.
- Analyze threat intelligence, IOCs, TTPs, and attacker behavior.
- Investigate security events across EDR platforms, network logs, identity systems, cloud environments, and application logs.
- Provide technical guidance and mentorship to L1/L2 SOC analysts.
- Support customer onboarding activities including log source validation, baseline reviews, and security use case configuration.
- Participate in SOC shift handovers and maintain investigation continuity.
Required Skills & Experience
- 3–6 years of hands on experience in SOC or Security Operations.
- Minimum 1–2 years of L2/L3 SOC analyst experience.
- Experience handling security alerts, investigations, and incident response in a live SOC environment.
- Strong experience with at least one SIEM platform: Microsoft Sentinel, Splunk, IBM QRadar, Elastic SIEM, or similar.
- Experience with EDR solutions: CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint, or similar.
- Strong understanding of MITRE ATT&CK Framework, threat hunting methodologies, and detection engineering concepts.
- Knowledge of network security fundamentals: TCP/IP, DNS, HTTP/S, firewall logs, proxy logs, network attack patterns.
- Experience analyzing Windows and Linux security artifacts: event logs, process trees, registry, scheduled tasks, persistence mechanisms.
- Ability to create professional incident reports and customer documentation.
Required Certifications
- Candidates must hold at least one of: Blue Team Level 2 (BTL2), GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), or CompTIA CASP+.
Preferred Certifications
- Blue Team Level 1 (BTL1), Microsoft SC 200, Certified SOC Analyst (CSA), CompTIA CySA+, GIAC Cyber Threat Intelligence (GCTI).
Preferred Qualifications
- Experience with MSSP or multi tenant SOC environments.
- Experience with SOAR platforms: Microsoft Sentinel SOAR, Palo Alto Cortex XSOAR, Splunk SOAR.
- Cloud security monitoring: Azure, AWS, GCP.
- Digital forensics activities: memory analysis, disk analysis, browser artifacts, timeline analysis.
- Threat intelligence platforms: MISP, OpenCTI, Recorded Future.
- Security automation using Python, PowerShell, KQL.
- UAE/Middle East SOC delivery experience and familiarity with regional security frameworks.
Soft Skills
- Strong analytical and investigation skills.
- Calm decision making during high severity incidents.
- Proactive approach toward learning and threat research.
- Strong communication skills with technical and non technical stakeholders.
- Ability to mentor junior team members.
- High attention to detail in reports, documentation, and case management.
What We Offer
- Competitive compensation based on experience and certifications.
- Annual training and certification budget.
- Exposure to real security incidents and enterprise environments.
- Opportunity to work with modern SOC tools and automation platforms.
- Career growth opportunities into SOC Team Lead, Detection Engineer, or DFIR Analyst.
- A cybersecurity focused culture built around technical excellence, ownership, and continuous learning.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at PROOFOPS
Netskope Implementation Engineer
Dubai, UAE
ProofOps is looking for an experienced Netskope Implementation Engineer to join their Technical Delivery team in Dubai. The role involves end-to-end Netskope deployment and onboarding for enterprise customers, as well as
Network Engineer
Dubai, UAE
ProofOps is seeking an experienced Network Security Engineer to deliver enterprise-grade security solutions across the UAE and Middle East. This hands-on role covers the full project lifecycle from pre-sales PoC to deplo
Netskope Engineer
Dubai, UAE
ProofOps is seeking a Netskope Implementation Engineer to lead end-to-end deployments of Netskope for customers in Dubai. The role involves configuring SASE/SSE solutions, designing PoC environments, and integrating with
Senior SOC Analyst
Dubai, UAE
About the company ProofOps is a cybersecurity services company helping organizations across the UAE and Middle East strengthen their security posture through practical, outcome-driven programs. Our operations are built a
Pre-Sales Engineer
Dubai, UAE
About the Company: ProofOps is a cybersecurity services company helping organizations across the UAE and Middle East strengthen their security posture through practical, outcome-driven programs. We work closely with cust
Network Engineer
Dubai, UAE
Job Description: Network Engineer Department: IT / Security Operations Reports To: Managed Services Lead Location: UAE Employment Type: Full-Time Role Summary We are looking for a skilled Network Engineer to manage, moni
Microsoft Security Engineer
Dubai, UAE
Department: IT / Security Operations Reports To: Managed Services Lead Location: UAE Employment Type: Full-Time Role Summary We are seeking a Microsoft Security Engineer to manage and optimize our Microsoft 365 security
Delivery Manager| Cyber Security
Dubai, UAE
About the Company: ProofOps is a cybersecurity services company helping organizations across the UAE and Middle East strengthen their security posture through practical, outcome-driven programs. Our work spans security o
Netskope Implementation Engineer
Dubai, UAE
Network Engineer
Dubai, UAE
Netskope Engineer
Dubai, UAE
Senior SOC Analyst
Dubai, UAE
Pre-Sales Engineer
Dubai, UAE
Network Engineer
Dubai, UAE
Microsoft Security Engineer
Dubai, UAE
Delivery Manager| Cyber Security
Dubai, UAE