SOC Analyst

SOC Analyst (Level 2)

On behalf of a client, well-established provider of IT-based solutions and system integrator, we are currently looking for a SOC Analyst (Level 2) to join their team in Nicosia.

Objective

The SOC Analyst (Level 2) will leverage a variety of tools and resources to proactively detect, investigate, and mitigate emerging and persistent threats impacting customer's networks, systems, and applications.

Position's Duties and Responsibilities
Serve as escalation point for conducting investigations into security incidents involving advanced and sophisticated threat actors and TTPsPerform forensic collection and analysis of electronic assets, devices, and log sourcesManage incident response activities including scoping, communication, reporting, and long-term remediation planningIdentify, collect, and analyse threat intelligence from internal and external sources and teamsDevelop hypotheses, analyse techniques, and execute hunts to identify threats across the environmentInterface with security teams and business stakeholders to implement countermeasures and improve defencesUtilizing SIEM/Big data to identify abnormal activity and extract meaningful insights.Research, develop, and enhance content within SIEM and other toolsInterface with engineering teams to design, test, and implement playbooks, orchestration workflows and automationsResearch and test new technologies and platforms; develop recommendations and improvement plansCoordinate investigation, containment, and other response activities with customers.Provide mentoring of junior staff and serve as point of escalation for higher severity incidentsDevelop incident analysis and findings reports for management, including gap identification and recommendations for improvementRecommend or develop new detection logic and tune existing sensors / security controlsWork with security solutions owners to assess existing security solutions array ability to detect / mitigate the abovementioned TTPsCreating custom SIEM queries and dashboards to support the monitoring and detection of advanced TTPs against company network.Develop and review technical documents and checklists to explain abstract IT and cybersecurity technologies and conceptsDevelop and review detailed or complex technical documents such as techniques, tactics, and procedures (TTPs), concepts of operations (CONOPS), special instructions and engineering plans, for supported enterprise IT and cybersecurity technology, services, applications, and processesPosition's  Qualifications
Bachelor's degree in Computer Science or a related field Relevant Technical Security Certifications.5+ years of experience in Incident Response / Computer Forensics / SOC team / Threat Hunting or related fieldsHost and network based forensic collection and analysisDynamic malware analysis, reverse engineering, and/or scripting abilitiesProficient with forensic toolsUnderstanding of Advanced Persistent Threat (APT) and associated tactics.Research, enrichment, and searching of indicators of compromiseGCIA, GCIH, GMON, SBTL1, SBTL2, CCD, or related certifications are considered a plusExperience managing security solutions preferably in an enterprise environment, or at minimum ability to demonstrate proficiency in using IDS solutions in smaller scaleExperience managing and configuring (or triaging events from) enterprise-level firewalls or vulnerability scanners is considered a plusExperience with SIEMs, ticketing systems, and other platforms in SOC environments.Experience with Ansible is considered a plus.Threat hunting experience is considered a plus.CompTIA Security+/CySA+, SBTL 1, SBTL2, CCD or similar level cyber security certifications from other vendors is a must.Very strong team and interpersonal skills along with the ability to work independently and achieve individual goals.Effective oral and written communication skills.Detailed oriented with strong written and verbal communication skillsStrong organizational skillsOccasional overtime may be requiredExcellent customer service skillsMentor Junior SOC AnalystsScripting Language skills in Python or PowerShellEmployer's Details

This position follows a rotating 24/7 shift schedule, covering:
Morning shift: 07:00–15:00Afternoon shift: 15:00–23:00Night shift: 23:00–07:00Additional details:
Two days off are provided after each night shiftOn a weekly basis, 2 days follow standard office hours depending on operational needsShifts rotate regularly among team members

---