SOC L3
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
CyberGate Defense seeks an experienced SOC L3 analyst to lead and mentor a team of SOC analysts, serve as escalation point for complex security incidents, and develop SOPs and incident response plans.
Key Skills for This Role
Responsibilities
- Lead and mentor a team of SOC analysts, providing guidance, training, and support
- Serve as escalation point for complex security incidents, providing expert level analysis and decision making
- Develop and maintain SOPs, playbooks, and incident response plans
- Conduct regular reviews of security alerts, incidents, and operational metrics to identify trends and gaps
- Collaborate with cross functional teams to implement security controls and best practices
- Conduct threat intelligence analysis to identify emerging threats and incorporate into defense strategies
- Lead incident response exercises, tabletop simulations, and post incident reviews
- Conduct periodic compromise assessment, penetration testing, and vulnerability assessments
- Develop cyber indicators and focused reporting for advanced cyber threats
- Responsible for overall SOC process management
Requirements
- Bachelor's degree in Information Security or related field (or equivalent work experience)
- Extensive experience (typically 7 9 years) in a security operations role with increasing responsibility and leadership
- In depth knowledge of cybersecurity technologies including SIEM, EDR, threat intelligence platforms, incident response frameworks
- Strong understanding of networking protocols, operating systems, and cloud environments
- Demonstrated experience in leading incident response for complex security incidents including forensic analysis, malware reverse engineering, and digital investigations
- Excellent leadership and communication skills
- Relevant certifications such as CISSP, GCIH, or CISM are highly desirable
Full Job Posting
Responsibilities
- Lead and mentor a team of SOC analysts, providing guidance, training, and support to enhance their technical skills and professional development.
- Serve as the escalation point for complex security incidents, providing expert level analysis, guidance, and decision making to ensure timely and effective incident response.
- Develop and maintain standard operating procedures (SOPs), playbooks, and incident response plans to streamline security operations and ensure consistency in response processes.
- Conduct regular reviews and assessments of security alerts, incidents, and operational metrics to identify trends, gaps, and areas for improvement.
- Collaborate with cross functional teams, including IT, engineering, and compliance, to implement security controls, configurations, and best practices to mitigate cyber risks.
- Conduct threat intelligence analysis to identify emerging threats, vulnerabilities, and attack techniques, and incorporate this knowledge into proactive defense strategies.
- Lead incident response exercises, tabletop simulations, and post incident reviews to assess and improve the organization's incident response capabilities.
- Stay abreast of the latest cybersecurity technologies, tools, and industry best practices, and evaluate their potential impact on the SOC's operations and capabilities.
- Act as a subject matter expert (SME) on cybersecurity matters, providing guidance and recommendations to senior management on strategic initiatives, projects, and investments.
- Use advanced threat intelligence techniques to identify cyber threats which may have found their way
- Conducts periodic compromise assessment/ penetration testing and vulnerability assessments to gauge resilience, find vulnerable entry points, and propose recommendations based on assessments results.
- Recommends ways to optimize security monitoring tools through threat hunting findings.
Qualifications
- Bachelor's degree, Information Security, or related field (or equivalent work experience).
- Extensive experience (typically 7 9 years) in a security operations role, with progressively increasing levels of responsibility and leadership.
- In depth knowledge of cybersecurity technologies, tools, and methodologies, including SIEM, EDR, threat intelligence platforms, incident response frameworks, etc.
- Strong understanding of networking protocols, operating systems, and cloud environments, with the ability to analyze and interpret log data and network traffic.
- Demonstrated experience in leading incident response efforts for complex security incidents, including forensic analysis, malware reverse engineering, and digital investigations.
- Excellent leadership and communication skills, with the ability to effectively lead and motivate a team of cybersecurity professionals and collaborate with stakeholders at all levels of the organization.
- Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Incident Handler (GCIH), or Certified Information Security Manager (CISM) are highly desirable.
- Experience working in a regulated industry (e.g., finance, healthcare, government) with knowledge of industry regulations and compliance requirements is a plus.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at CyberGate Defense
Red Teaming Specialist
Abu Dhabi, UAE
CyberGate Defense seeks an experienced Red Teaming Specialist to lead stealthy adversary simulations in Abu Dhabi. Requires 5+ years of offensive security experience, expertise in Cobalt Strike, AD exploitation, and cert
Saipoint Administator
Abu Dhabi, UAE
CyberGate Defense is seeking a skilled SailPoint Implementation Engineer with hands-on experience in SailPoint IdentityIQ and/or Identity Security Cloud. The role involves designing, configuring, and deploying IAM soluti
MKS / Partners & Platforms Specialist
Abu Dhabi, UAE
CyberGate Defense seeks a MKS / Partners & Platforms Specialist to manage partner relationships, product selection, sales enablement, and training coordination. The role requires 3-5 years in partnership management or kn
Bid Manager
Abu Dhabi, UAE
CyberGate Defense is hiring a Bid Management Manager to lead end-to-end bid and proposal processes for strategic opportunities. The role involves managing the bid lifecycle, developing win themes, and coordinating with s
SOAR Engineer
Abu Dhabi, UAE
CyberGate Defense seeks a SOAR Engineer to design and implement advanced SOAR playbooks for phishing, incident response, vulnerability management, and threat hunting. The role requires 5+ years of SOAR experience, hands-
Senior Pre Sales -Cyber Security
Abu Dhabi, UAE
CyberGate Defense seeks a Senior Cybersecurity Pre-Sales specialist to lead pre-sales activities, architect tailored solutions, and deliver compelling technical presentations. The ideal candidate has deep cybersecurity e
Senior Mss Engineer_Splunk
Abu Dhabi, UAE
CyberGate Defense is seeking a Senior MSS Engineer with Splunk expertise to deploy, configure, and maintain Splunk Enterprise and Enterprise Security. The role involves log source onboarding, detection engineering, platf
DFIR Analyst
Abu Dhabi, UAE
CyberGate Defense is seeking a DFIR Analyst to lead incident response and digital forensic investigations. The role requires 3-5 years of experience in digital forensics and incident response, proficiency with forensic t
Red Teaming Specialist
Abu Dhabi, UAE
Saipoint Administator
Abu Dhabi, UAE
MKS / Partners & Platforms Specialist
Abu Dhabi, UAE
Bid Manager
Abu Dhabi, UAE
SOAR Engineer
Abu Dhabi, UAE
Senior Pre Sales -Cyber Security
Abu Dhabi, UAE
Senior Mss Engineer_Splunk
Abu Dhabi, UAE
DFIR Analyst
Abu Dhabi, UAE