SOC Analyst

What You'll Do:

• This role involves monitoring, analyzing, and responding to security alerts and incidents to safeguard the organization's information assets from cyber threats
• Monitor Security Alerts: Continuously monitor security alerts and events from tools such as Cisco AMP, Splunk, Duo, CASB, CrowdStrike, and ExtraHop. Perform initial triage to assess the severity and impact of security incidents.
• Incident Response: Respond promptly to security incidents following predefined procedures. Escalate incidents to L2 analysts or relevant teams when necessary.
• Log Analysis: Analyze logs and alerts from systems and devices to identify potential security threats.
• Endpoint Security: Use Cisco AMP and CrowdStrike to monitor and protect endpoints from malware and other threats. Support investigations

Expertise You'll Bring:

• Familiarity with security tools like Cisco AMP, Splunk, Duo, CASB, CrowdStrike, ExtraHop.
• Basic understanding of network security principles, endpoint security, and threat detection techniques.
• Proficiency in log analysis and network traffic analysis for identifying security threats