Security Analyst SOC; L2

Position:
Security Analyst SOC L2

Location:

Dubai, UAE

Experience:

5 Years

Duration: 2 Years

Job Summary:

We are seeking a skilled L2 Security Analyst to join our Security Operations Center. The L2 analyst investigates security incidents escalated from L1, conducts threat hunting, performs in-depth log analysis, and leads incident response efforts to minimize organizational risk.

• Security Monitoring & Incident Response:
  Investigate and triage alerts escalated by L1; determine scope, impact, and root cause; lead containment, eradication, and recovery; escalates critical incidents to L3 IR teams.
• Threat Hunting:
  Proactively hunt threats using SIEM, EDR, XDR, and threat intelligence; identify suspicious patterns and IOCs; develop hypotheses based on threat intel and org risk.
• Log Analysis:
  Analyze logs from Firewalls, IDS, IPS, Windows, Linux, AD, Cloud platforms, EDR, Email gateways, Proxy, and DNS.
• Security Operations:
  Tune SIEM correlation rules to reduce false positives; develop detection logic for emerging threats; support vulnerability management and remediation tracking.
• Documentation &
  
  Collaboration:
  
  Document investigations, prepare incident reports, maintain playbooks SOPs; map incidents to MITRE ATT&CK; mentor L1 analysts; support forensics and tabletop exercises.

• Experience:
  
  3-5 yrs in SOC/L2 analyst role.
• Tools:
  Hands‑on with SIEM like Splunk, QRadar, Sentinel, EDR/XDR like Crowd Strike, MS Defender, Threat Intel Platforms.
• Knowledge:
  Strong understanding of modern cyber threats, attack techniques, MITRE ATT&CK, incident response lifecycle.
• Certifications:
  
  CEH, Security+, CySA+, or equivalent preferred.
• Soft Skills:
  
  Analytical mindset, strong documentation, stakeholder communication.