SOC Engineer – Level 2 (L2) - Remote

Overview

We are hiring an experienced SOC Engineer – L2 to lead advanced threat detection, incident response, and threat hunting activities. This role requires deep technical expertise in cybersecurity tools, forensic analysis, and infrastructure security.

In Short

• Investigate and analyze escalated alerts from L1 analysts.
• Perform root cause and impact assessments of security incidents.
• Correlate data across SIEM, EDR, and other platforms to identify threats.
• Conduct proactive threat hunting using frameworks like NIST.
• Customize and fine-tune SIEM detection rules and correlation logic.
• Perform forensic investigations, log analysis, and packet captures.
• Enhance incident response playbooks and workflows using SOAR.
• Administer and maintain Windows/Linux servers and VMware infrastructure.
• Implement and manage endpoint protection, IDS/IPS, firewalls, and vulnerability scanners.
• Analyze IAM/SSO events and support identity-related investigations.

Requirements

• 5-7 years in Security Operations or Cyber Security.
• Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or a related field.
• Strong experience with SIEM, EDR, SOAR, and forensic tools.
• Deep understanding of cybersecurity frameworks and incident response.
• Hands-on experience with server and network infrastructure.
• Familiarity with scripting (e.g., Python, PowerShell) for automation.
• Excellent analytical, troubleshooting, and documentation skills.
• Effective verbal and written communication.
• Eagerness to learn and grow in the cybersecurity domain.
• Certifications like CompTIA CySA+, CSA, CEH, or Microsoft SC-200/SC-300 preferred.

Benefits

• Full-time, dedicated resource role.
• Opportunity to work in a dynamic cybersecurity environment.
• Chance to lead advanced threat detection initiatives.
• Rotational shifts, including night shifts.