Cyber Security and Threat Monitoring Specialist – SOC

About the role

The Cyber Security and Threat Monitoring Specialist will protect the bank’s digital environment by monitoring security events, triaging alerts, and coordinating incident response. You will also produce threat intelligence reports for senior leadership to guide risk‑based decisions.

Key responsibilities

• Monitor and analyze alerts using SIEM platforms such as Splunk, Microsoft Sentinel and IBM QRadar.
• Perform alert triage, validation and prioritisation based on severity and business impact.
• Investigate suspicious logins, malware detections, network anomalies and data‑exfiltration indicators.
• Coordinate incident response activities following NIST SP 800‑61, including containment, eradication and recovery.
• Generate threat intelligence dashboards and reports for the CISO and risk committees.
• Fine‑tune SIEM rules, conduct threat‑hunting exercises and develop playbooks.
• Ensure monitoring activities comply with internal policies and banking regulations, and support audit documentation.

Required profile

• Bachelor’s degree in Cybersecurity, IT, Computer Science or a related field.
• 5‑8+ years of experience in a Security Operations Center or similar cybersecurity role.
• Prior experience in banking or financial services is highly preferred.

Required skills

• Hands‑on experience with Splunk, Microsoft Sentinel and IBM QRadar.
• Knowledge of NIST SP 800‑61 incident‑response framework.
• Familiarity with the MITRE ATT&CK framework.
• Proficiency in security event analysis, log correlation and network protocol understanding.
• Experience with threat‑intelligence platforms and feeds.
• Ability to conduct threat‑hunting and develop detection use cases.