SOC L2

2 days ago

Dubai, Dubai, United Arab Emirates Inspira Enterprise Full time 120,000 - 250,000 per year

For both L3 Senior SOC Analyst and L2 SOC Analyst:

  • Threat Hunting:
    Proactive identification of advanced threats, anomalies, and malicious activities within the bank's network and systems.

  • Incident Response (IR):
    Participation in the full incident response lifecycle, including detection, analysis, containment, eradication, recovery, and post-incident review.

  • Alert Finetuning:
    Continuous optimization and reduction of false positives from security alerts across various security tools (e.g., SIEM, EDR, IDS/IPS).

  • Coordination:
    Seamless coordination and communication with various internal teams within the bank (e.g., IT Operations, Application Development, Infrastructure, Business Units) during security incidents and daily operations.

  • Management Reporting:
    Preparation of clear, concise, and actionable reports for management on security incidents, threat intelligence, SOC performance, and project status.

  • Log Source Validation:
    Ensuring the proper onboarding, configuration, and validation of security log sources into the SIEM (Splunk) to ensure comprehensive visibility.

  • Splunk Expertise:
    Advanced proficiency in Splunk for security monitoring, dashboard creation, query optimization, and data analysis.

Specific to L3 Senior SOC Analyst:

  • SOC Vendor Management:
    Acting as a primary liaison with various SOC technology vendors, managing relationships, ensuring service level agreements (SLAs) are met, and driving product enhancements.

  • Strategic Input:
    Providing strategic input on SOC roadmap, technology selection, playbooks and process improvements.

  • Mentorship:
    Mentoring and guiding junior SOC analysts.

Resource Requirements and Qualifications

The vendor must provide resources that meet the following minimum qualifications:

4.1 L3 Senior SOC Analyst (1 Resource)

  • Experience:
    Minimum of 7-10 years of dedicated experience in a Security Operations Center (SOC) environment, with at least 3-5 years in a senior or lead role.

  • Expertise:

  • Demonstrable expertise in advanced threat hunting methodologies and techniques.
  • Proven experience in managing SOC vendors, including contract negotiation, performance monitoring, and issue resolution.
  • Extensive experience in leading and executing complex incident response activities.
  • Deep understanding of SIEM (Splunk preferred) alert correlation, rule creation, and optimization.
  • Strong background in financial services industry cybersecurity.
  • Application and DB logs

  • Application use case

  • Technical Skills:

  • Advanced Splunk expertise (Splunk Enterprise Security experience highly desirable).
  • Proficiency in scripting languages (e.g., Python, PowerShell) for automation and analysis.
  • Extensive experience with
    Endpoint Detection and Response (EDR)
    and
    Network Detection and Response (NDR)
    platforms.

  • Familiarity with various security technologies (e.g., Cloud Security, Vulnerability Management).

  • Certifications (Highly Preferred):
    CISSP, SANS GIAC certifications (e.g., GCIH, GCFA, GNFA, GDAT), OSCP.

  • Soft Skills:
    Excellent communication, leadership, problem-solving, and analytical skills. Ability to work effectively under pressure.

4.2 L2 SOC Analyst (1 Resource)

  • Experience:
    Minimum of 3-5 years of dedicated experience in a Security Operations Center (SOC) environment.

  • Expertise:

  • Solid experience in performing threat hunting activities.
  • Hands-on experience in incident detection, analysis, and initial response.
  • Experience in finetuning security alerts and managing SIEM rules.
  • Understanding of log source integration and validation processes.

  • Background in financial services industry cybersecurity.

  • Technical Skills:

  • Proficiency in Splunk for security monitoring and basic query writing.
  • Hands-on experience with
    Endpoint Detection and Response (EDR)
    and
    Network Detection and Response (NDR)
    tools.

  • Familiarity with common security tools and technologies.

  • Certifications (Preferred):
    CompTIA Security+, CySA+, Splunk Core Certified User/Power User.

  • Soft Skills:
    Strong analytical, communication, and teamwork skills. Eagerness to learn and adapt.

  • SOC L2 Engineer

    1 week ago

    Dubai, Dubai, United Arab Emirates Nets-international Communication Full time 100,000 - 120,000 per year

    L2 EngineerRequirementExperience7-8+ years of experience in SOC operations, focusing on Level 2 incident handling.Availability 24x7 Onsite (Shift-based work in the Customer SOC).Core MandateAdvanced troubleshooting, incident resolution, root cause analysis (RCA), and defined escalation management.Key Responsibilities:Act as the primary escalation point from...

  • SOC L1 L2 L3 Engineer

    1 week ago

    Dubai, Dubai, United Arab Emirates NETS-International Group Full time 120,000 - 240,000 per year

    Security Monitoring, Content Development & Incident Response: L1 EngineerRequirement Detail Experience5+ years of dedicated SOC Level 1 experience.Availability 24x7 Onsite(Shift-based work in the Customer SOC).Core MandateTriage, initial investigation, and management of security events within strict SLA windows.Security Monitoring, Content Development &...

  • L3 SOC Operation Consultant

    1 week ago

    Dubai, Dubai, United Arab Emirates HTP GLOBAL TECHNOLOGIES Full time $80,000 - $100,000 per year

    Senior SOC Consultant – SOC (L2–L3)Experience: 7–9 Years**Location: Dubai/Abu DhabiDepartment: Managed Security Services (MSSP) – SOC OperationsRequired Skills & Experience· –9 years of total experience in cybersecurity, with at least 6+ years in SOC operations within an MSSP environment.Strong hands-on experience with:·       XDR...

  • soc l3

    1 week ago

    Dubai, Dubai, United Arab Emirates Nets-international Communication Full time 100,000 - 120,000 per year

    SOC L3 EngineerExperience10+ years of deep technical and strategic experience in Cyber Security.Availability 8x5 Onsite (Business Days) with On-Call service outside business hours.Core MandateStrategic threat analysis, content strategy, and advanced Digital Forensics and Incident Response (DFIR) guidance.Key Responsibilities:Provide the highest level of...

  • Cyber Security Engineer – L2

    2 days ago

    Dubai, Dubai, United Arab Emirates Anix Global Full time 240,000 - 480,000 per year

    Job Title: Cyber Security Engineer – L2Overall Experience: 12 to 15 YearsRelevant Experience (Cyber Security Domain): Minimum 5 YearsSalary Budget : 20 K AEDRole Objective -The Cyber Security L2 Engineer will be responsible for the day-to-day operations, administration, and maintenance of enterprise security infrastructure.The role requires strong hands-on...

  • Senior Network Operations Engineer

    1 week ago

    Dubai, Dubai, United Arab Emirates Cinergie Digital Full time 132,000 - 168,000 per year

    Senior Infrastructure EngineerLocation: Client Premises, Dubai, UAESalary: AED 11,000 to 14,000 per monthBenefits: Work visa, air tickets, medical insurance, gratuity, paid time offExperience Required: Minimum 5 years of relevant work experienceReference:FZ-AE-210The Senior Network Engineer is responsible for designing, implementing, and supporting complex...

  • SOC Analyst L1

    2 weeks ago

    Dubai, United Arab Emirates Dautom Full time

    In this role, you will have the opportunity to work closely with one of our esteemed clients. This client is a global leader known for its commitment to quality and innovation. They have chosen Dautom as their trusted partner for their upcoming projects.Job Description:Acknowledge, analyse, and validate incidents received.Escalate validated and confirmed...

  • SOC Analyst L1

    1 day ago

    dubai, United Arab Emirates Dautom Full time

    In this role, you will have the opportunity to work closely with one of our esteemed clients. This client is a global leader known for its commitment to quality and innovation. They have chosen Dautom as their trusted partner for their upcoming projects.Job Description:Acknowledge, analyse, and validate incidents received.Escalate validated and confirmed...

  • SOC Analyst L1

    3 weeks ago

    Dubai, United Arab Emirates Dautom Full time

    In this role, you will have the opportunity to work closely with one of our esteemed clients. This client is a global leader known for its commitment to quality and innovation. They have chosen Dautom as their trusted partner for their upcoming projects. Job Description: Acknowledge, analyse, and validate incidents received. Escalate validated and confirmed...

  • SOC Analyst L1

    1 week ago

    Dubai, United Arab Emirates Dautom Full time

    In this role, you will have the opportunity to work closely with one of our esteemed clients. This client is a global leader known for its commitment to quality and innovation. They have chosen Dautom as their trusted partner for their upcoming projects. Job Description: Acknowledge, analyse, and validate incidents received. Escalate validated and confirmed...

  • SOC Analyst L2

    7 days ago

    Dubai, United Arab Emirates Dicetek LLC Full time

    Overview Join to apply for the SOC Analyst L2 role at Dicetek LLC. Responsibilities - Responsible for interprets and analyses alerts from devices detections systems, security intelligence devices like IDS and IPS, firewall logs, application logs, network flow data and other relevant sources. - End to end security incident triage, alerting the respective team...

  • SOC Analyst L2

    6 days ago

    Dubai, United Arab Emirates Dicetek LLC Full time

    Overview Join to apply for the SOC Analyst L2 role at Dicetek LLC . Responsibilities Responsible for interprets and analyses alerts from devices detections systems, security intelligence devices like IDS and IPS, firewall logs, application logs, network flow data and other relevant sources. End to end security incident triage, alerting the respective team...

  • SOC Analyst L2

    1 day ago

    dubai, United Arab Emirates Dautom Full time

    In this role, you will have the opportunity to work closely with one of our esteemed clients. This client is a global leader known for its commitment to quality and innovation. They have chosen Dautom as their trusted partner for their upcoming projects.Job Description:Validate the Incidents reported by SOC Analysts L1.Escalate timely when the SLA for...

  • SOC Analyst L2

    1 week ago

    Dubai, United Arab Emirates Dautom Full time

    In this role, you will have the opportunity to work closely with one of our esteemed clients. This client is a global leader known for its commitment to quality and innovation. They have chosen Dautom as their trusted partner for their upcoming projects. Job Description: Validate the Incidents reported by SOC Analysts L1. Escalate timely when the SLA for...

  • SOC Analyst L2

    1 week ago

    Dubai, United Arab Emirates Dautom Full time

    In this role, you will have the opportunity to work closely with one of our esteemed clients. This client is a global leader known for its commitment to quality and innovation. They have chosen Dautom as their trusted partner for their upcoming projects. Job Description: 1. Validate the Incidents reported by SOC Analysts L1. 2. Escalate timely when the SLA...

  • SOC Analyst L2

    1 day ago

    dubai, United Arab Emirates Dicetek LLC Full time

    OverviewJoin to apply for the SOC Analyst L2 role at Dicetek LLC.ResponsibilitiesResponsible for interprets and analyses alerts from devices detections systems, security intelligence devices like IDS and IPS, firewall logs, application logs, network flow data and other relevant sources.End to end security incident triage, alerting the respective team and...