L1 SOC Analyst

The L1 SOC Analyst serves as the first line of defense within the Security Operations Center, responsible for monitoring, triaging, and escalating security alerts in accordance with defined procedures and SLAs. The role focuses on initial alert investigation, incident logging, and ensuring accurate and timely escalation to higher-tier analysts when required.

• Serve as the first SOC tier to monitor and triage security alerts.
• Ensure threat alerts are contextually analyzed and escalated to the next SOC tier when deeper analysis is required.
• Provide feedback and comments on relevant data quality and visibility issues.
• Monitor and report on the health of the data collection and log ingestion pipelines.
• Log security incidents accurately and ensure adequate information is available for L2/L3 analysts.
• Generate and distribute scheduled and ad-hoc SOC reports.
• Operate independently to investigate and escalating alerts in line with operational requirements and SLA commitments.
• Adhere to SOC processes, playbooks, and incident handling procedures.

• Excellent communication skills
• Excellent problem-solving skills.
• Ability to support and balance own time among multiple tasks, and lead junior staff when required
• Ability to successfully interface with clients (internal and external)
• Ability to document and explain technical details in a concise, understandable manner
• Excellent command of English
• Ability to work independently and as part of a team