Security Operations Center (SOC) Engineer

Qualification and Experience

• Bachelor's Degree in Computer Science, Information Technology, Cybersecurity, or related field.
  
• 3–5 years of experience in Security Operations, Incident Response, or Cybersecurity.
  
• Hands-on experience with SIEM solutions, EDR tools, IDS/IPS, and network security technologies.
  
• Understanding of cybersecurity frameworks such as NIST, ISO 27001, and CIS Controls.
  

Preferred Certifications

• CompTIA Security+
  
• Certified Ethical Hacker (CEH)
  
• GIAC Certified Incident Handler (GCIH)
  
• Certified SOC Analyst (CSA)
  
• CISSP (advantageous)
  

• Monitor security events and alerts generated by security tools such as SIEM, IDS/IPS, EDR, firewalls, and threat intelligence platforms.
  
• Investigate and analyze potential security incidents to determine severity, impact, and root cause.
  
• Respond to cybersecurity incidents and coordinate containment, eradication, and recovery activities.
  
• Conduct threat hunting activities to identify hidden threats and vulnerabilities.
  
• Develop and maintain security monitoring use cases, detection rules, and incident response procedures.
  
• Escalate critical security incidents to appropriate stakeholders and management.
  
• Prepare incident reports and post-incident reviews with recommendations for improvement.
  
• Support vulnerability remediation efforts by collaborating with infrastructure and application teams.
  
• Maintain security dashboards, logs, and monitoring systems.
  
• Participate in security awareness and continuous improvement initiatives.