SOC L2 Analyst

SOC L2 Analyst
Doha, Qatar
Salary negotiable + Visa + Health Insurance+ EOSB +Annual Leave

The SOC Level 2 Analyst will play a key role in the organization’s security operations by supporting the monitoring, investigation, and response to cybersecurity incidents across IT and OT environments. The role focuses on handling escalated alerts, performing in-depth analysis, and ensuring timely and effective incident response to minimize business impact.

Key Responsibilities:

• Conducting detailed analysis and investigation of high-priority incidents, including those escalated by SOC Level 1 Analysts, with a specific focus on threats to OT environments.
• Analyzing alerts and incidents in-depth to assess the real or potential impact on both IT and OT infrastructures.
• Serving as an escalation point for Level 1 SOC Analysts for incidents in IT and OT domains.
• Escalating major security incidents to SOC Senior Analysts or Level 3 SOC Analysts based on detailed investigations, particularly incidents that affect critical OT systems.

Qualifications & Experience:

• Minimum 5 years of experience investigating security incidents through SIEM solutions such as Azure Sentinel, Splunk, ArcSight, QRadar, McAfee SIEM, etc., including monitoring OT environments.
• Minimum 5 years of experience using vulnerability scanning solutions such as Qualys, Tenable, or Tripwire IP360, with a focus on identifying vulnerabilities in both IT and OT infrastructures.
• Hands-on experience with various security products such as EDR, NDR, NGFW, IDS/IPS, Web Application Firewalls (WAF), Antimalware solutions, Web and Email Filters, Darktrace, and OT-specific solutions like SCADA security tools.
• Expertise in MITRE ATT&CK Techniques, Tactics, and Procedures (TTPs), particularly as they apply to both IT and OT environments within SOC operations.
• In-depth knowledge of attack types and prevention techniques to secure network services, including OT-specific protocols such as Modbus, DNP3, and BACnet, alongside traditional TCP/IP network protocols and application layer protocols (e.g., HTTP/S, DNS, FTP, SMTP, Active Directory).

Don’t miss this chance to advance your career. Apply today!