Senior SOC Engineer (NDR/VM)
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Overview The Senior Engineer – SOC (NDR & VM) will be a technically proficient SOC Engineer to join our Security Operations Center (SOC) team. This role focuses on deploying and managing Network Detection and Response (NDR) and Vulnerability Management tools.
Key Skills for This Role
Full Job Posting
Overview
The Senior Engineer – SOC (NDR & VM) will be a technically proficient SOC Engineer to join our Security Operations Center (SOC) team.
This role focuses on deploying and managing Network Detection and Response (NDR) and Vulnerability Management tools.
The ideal candidate will be hands-on, detail-oriented, and passionate about cybersecurity operations.
Network Detection & Response (Ndr)
- Contribute to the Architecture design to deploy the NDR tool customized to the client’s environment.
- Deploy and Manage the NDR solutions to monitor network traffic and detect malicious activity. (Like Core Light, Dark Trace, Vectra)
- Analyse network telemetry and behavioural patterns to identify threats such as lateral movement, data exfiltration, and command-and-control communications.
- Develop and fine-tune detection logic, signatures, and machine learning models to improve threat visibility.
- Integrate NDR platforms with SIEM and SOAR tools to enable automated alerting and response.
- Able to write and tune the network signature and has knowledge on Suricata and Snort rule writing.
Vulnerability Management
- Deploy and Manage VM tools like Qualys, Tenable, or Rapid7 amongst others.
- End-to-end vulnerability management lifecycle: scanning, assessment, prioritization, and remediation tracking.
- Collaborate with infrastructure and application teams to ensure timely patching and mitigation of identified vulnerabilities.
- Maintain a centralized vulnerability dashboard and generate executive-level reports with risk-based metrics.
- Ensure alignment with regulatory requirements pertaining to the client industry.
Security Operations & Incident Response
- Assist in Investigation and response to security incidents, leveraging NDR and vulnerability data.
- Work closely with SOC Team, threat hunting, and threat intelligence teams to contextualize alerts and improve detection capabilities.
- Contribute to the development of SOC playbooks and standard operating procedures
- Profound knowledge and hands-on experience with NDR tools and its architecture.
- Strong understanding of network traffic and analysis.
- Proven expertise in NDR platforms (e.g., Corelight, Vectra AI, Darktrace,) and vulnerability management tools (e.g., Qualys, Tenable, and Rapid7).
- Strong understanding of TCP/IP, DNS, HTTP/S, and other network protocols.
- Proven experiences with Vulnerability Management Service with end-to-end lifecycle.
- Hands on experience with writing and tuning detection signatures including Suricata and Snort.
- Proven technical capabilities in a complex, fast-paced SOC environment.
- Ability to diagnose and troubleshoot network issues related with network detections.
- Strong understanding of SOC operations, cybersecurity principles, and best practices.
- Excellent problem-solving skills and the ability to make decisions under pressure.
Qualifications
- Certified Information Systems Security Professional (CISSP), OSCP, or GIAC is desirable
- Networking certifications such as CCNA or CCNP are advantageous.
- Proven expertise in NDR platforms (e.g., Corelight, Extra Hop, Vectra AI, Darktrace,) and vulnerability management tools (e.g., Qualys, Tenable, and Rapid7).
- Vendor certifications for NDR product/s.
- Strong understanding of TCP/IP, DNS, HTTP/S, and other network protocols.
- Experience integrating vulnerability tools with ticketing systems (e.g., ServiceNow, Jira) and CMDBs.
- Prior experience in a technical role within a SOC or similar cybersecurity environment.
- A minimum of 5 years of experience in SOC operations, with significant experience in NDR and Vulnerability Management
- Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at CPX
SOC Platform Engineer
Abu Dhabi Emirate, UAE
CPX is hiring a SOC Platform Engineer with at least 4 years of experience to manage Threat Intelligence Platforms and other SOC solutions. The role involves platform management, integration with SOC tools, automation dev
Associate Consultant – Cyber Consulting Services
Abu Dhabi Emirate, UAE
We are seeking an Associate Consultant to support Cyber Academy engagements including training, advisory, cyber exercises, and awareness. You will assist in developing training materials, conducting research, and support
Senior Specialist Threat Intelligence Analyst
Abu Dhabi, UAE
CPX is seeking a Lead Threat Intelligence Analyst to conduct all-source intelligence analysis, manage threat intelligence platforms, and produce high-quality assessments. The ideal candidate has 8+ years of experience in
Lead - Threat Intelligence
Abu Dhabi, UAE
CPX seeks a Lead Threat Intelligence Analyst to conduct all-source intelligence analysis, manage threat intelligence platforms, and produce high-quality intelligence products. The role requires strong analytical skills,
Junior Legal Counsel
Abu Dhabi, UAE
CPX is looking for a Junior Legal Counsel to provide legal advice on technology transactions, corporate governance, regulatory, compliance, and intellectual property matters. The role requires 1-3 years of PQE with compl
Specialist - HSE
Abu Dhabi, UAE
CPX seeks an experienced HSE Officer to ensure health, safety, and environmental governance during OT cybersecurity and critical infrastructure projects in substations and control centers. The role involves managing HSE
Lead Consultant - Client Success (CPX)
Abu Dhabi, UAE
CPX is hiring a Lead Consultant to serve as a trusted cybersecurity advisor and client success lead for managed security services clients. The role involves driving customer success, service governance, technical advisor
Lead Engineer - OT Cybersecurity
Abu Dhabi, UAE
CPX is seeking a Lead Engineer - OT Cybersecurity to implement OT cybersecurity solutions in utility environments and substations. The role involves hands-on deployment of cybersecurity technologies, infrastructure desig
SOC Platform Engineer
Abu Dhabi Emirate, UAE
Associate Consultant – Cyber Consulting Services
Abu Dhabi Emirate, UAE
Senior Specialist Threat Intelligence Analyst
Abu Dhabi, UAE
Lead - Threat Intelligence
Abu Dhabi, UAE
Junior Legal Counsel
Abu Dhabi, UAE
Specialist - HSE
Abu Dhabi, UAE
Lead Consultant - Client Success (CPX)
Abu Dhabi, UAE
Lead Engineer - OT Cybersecurity
Abu Dhabi, UAE