SOC Analyst L2 OT/IT - (Nozomi + Palo Alto Cortex)
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Role Description: We are hiring an experienced L2 OT/IT SOC Analyst to support a 24x7 SOC environment in Qatar. The role involves advanced monitoring, threat hunting, incident investigation, and security platform management across both OT and IT environments.
Key Skills for This Role
Full Job Posting
Role Description
We are hiring an experienced L2 OT/IT SOC Analyst
to support a 24x7 SOC environment in Qatar.
The role involves advanced monitoring, threat hunting, incident investigation, and security platform management across both OT and IT environments.
The selected candidate will act as the escalation point for L1 analysts and coordinate with L3 teams when required, helping detect and respond to cybersecurity threats affecting enterprise and operational technology environments.
Key Responsibilities
- Investigate and validate L2 incidents escalated from L1 SOC analysts
- Perform contextual analysis, incident investigation, and threat hunting activities
- Monitor OT/IT environments proactively to identify threats and suspicious activity
- Manage and support security platforms including SIEM, EDR, XDR, and SOAR solutions
- Support detection engineering activities including correlation rule tuning and deployment
- Provide mitigation recommendations and support incident response activities
- Escalate complex incidents to L3 teams when required
- Contribute to SOC reporting and knowledge base updates
- Support monitoring for attacks, intrusions, and unusual activities across enterprise environments
Required Technical Skills
- Strong hands-on experience with
Nozomi
- (OT security monitoring/detection)
- Experience with
Palo Alto Cortex Xdr And And Or Cortex Xsoar
- **Strong SOC investigation and incident triage experience (L2 level)**
- **SIEM/EDR alert analysis and validation expertise**
- **Threat hunting using IOC and Threat Intelligence methodologies**
- **Experience supporting enterprise security operations environments**
Qualifications & Certifications
Required Certifications (one or more preferred):
• GIAC Certified Incident Handler (GCIH)
- Palo Alto Networks Certified Cybersecurity Associate (PCCSA)
• Certified SOC Analyst (CSA)
- Splunk Core Certified Power User / Cybersecurity Defense Analyst
- Nice to Have
- Arabic speaking candidates preferred
- Detection engineering / SIEM correlation rule development experience
- OT cybersecurity exposure within industrial environments
- Experience collaborating with Vulnerability Management and broader security teams
- Familiarity with KPI-driven SOC operations and SLA environments
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Intrinsic Security
OSCP Certified - Senior Penetration Tester / Offensive Security Consultant
Riyadh, KSA
Intrinsic Security is hiring a Senior Penetration Tester / Offensive Security Consultant in Riyadh, Saudi Arabia. The role involves advanced security assessments across web applications, networks, and critical infrastruc
Network Support & Infrastructure Engineer (2 Positions)
Riyadh, KSA
Support and maintain network infrastructure, troubleshoot issues, manage incidents, and ensure compliance with security policies; requires networking knowledge and strong commun...