SOC Analyst – Security Operations Center

About the role

The SOC Analyst will protect IFZA’s information systems by monitoring, analyzing, and responding to security incidents. You will work closely with the security and IT teams to ensure compliance with industry standards and to continuously improve the organization’s security posture.

Key responsibilities

• Monitor SIEM dashboards (e.g., Microsoft Sentinel) and security alerts in real time.
• Investigate and triage alerts, distinguishing false positives from true threats.
• Escalate high‑severity incidents to L2/L3 analysts with proper documentation.
• Perform predefined response actions such as isolating devices or blocking IPs.
• Analyze threat intelligence, phishing emails, malware, and malicious URLs.
• Document incidents, conduct root‑cause analysis, and generate reports.
• Collaborate with internal teams and communicate with users to validate suspicious activity.
• Deliver security awareness training and create educational materials.

Required profile

• Bachelor’s degree in engineering, Computer Science, or a related field.
• 5–7 years of experience in SOC operations, with at least 3 years hands‑on in a blue‑team or security engineering role.
• Proven expertise with Microsoft Sentinel, Microsoft Defender, and incident management.
• Strong analytical mindset, attention to detail, and proactive attitude.

Required skills

• Microsoft Sentinel
• Microsoft Defender
• SIEM monitoring
• TCP/IP fundamentals
• Windows and Linux internals
• AWS and Azure security primitives
• Python, Bash, PowerShell scripting
• MITRE ATT&CK framework
• Threat hunting and incident response

What we offer

• 24 annual leave days
• Annual flight home