Security Operations Center Analyst

We are looking for a Level 1 SOC Analyst to join a leading cybersecurity team in Abu Dhabi. This is a great opportunity for someone passionate about security operations, eager to grow, and ready to contribute to mission-critical environments.

Key Responsibilities:

• Monitor, analyze, and respond to security events using SIEM and EDR platforms.
• Perform triage of security alerts and escalate incidents as needed.
• Investigate logs, emails, and endpoint activities to detect potential threats.
• Assist in fine-tuning detection rules and developing use cases for threat monitoring.
• Collaborate with internal teams on incident containment and mitigation.
• Document incidents, create reports, and contribute to process improvement initiatives.
• Ensure compliance with standard operating procedures and security guidelines.

Required Skills & Experience:

• 2+ years of hands-on experience in a SOC environment.
• Solid experience with SIEM platforms (e.g., Splunk, Securonix, Sentinel, ArcSight, etc.).
• Good knowledge of Threat Intelligence, Incident Management, and Cyber Kill Chain methodology.
• Familiar with M365, Azure Security tools, EDR solutions (e.g., CrowdStrike, Defender for Endpoint).
• Understanding of networking concepts such as TCP/IP, OSI layers, DNS, firewalls, and routing.
• Exposure to various security devices (Check Point, Cisco ASA/Firepower, Symantec, Forcepoint, etc.).
• Hands-on experience using threat intel tools like VirusTotal, Cisco Talos, AbuseIPDB, etc.

Certifications (preferred):

• SC-200, AZ-900, Security+, CEH, RHCSA, NSE 1–3.

What We Offer:

• 1-year renewable contract with a leading client in Abu Dhabi.
• Work with a skilled security team on enterprise-level threat monitoring and response.
• Growth potential and exposure to modern cybersecurity tools and practices.