Cyber Security Analyst

About the role

Join the Enterprise Security team as an Information Security Analyst, defending the organization against real-world threats. You will work in a modern SOC equipped with advanced SIEM, XDR, email security and cloud platforms, handling alerts, building detections and hunting threats.

Key responsibilities

• Monitor and investigate alerts across SIEM, XDR, IDS/IPS and email security tools.
• Own end-to-end incident response, including triage, containment and root-cause analysis.
• Develop and maintain IR playbooks, runbooks and SOAR automations.
• Conduct hypothesis-driven threat hunts using TTPs, IOCs and OSINT, and monitor the dark web for data exposure.
• Design, tune and implement high-quality detections aligned with MITRE ATT&CK, reducing false positives.
• Analyze network traffic, packet captures and support NGFW/WAF defenses.
• Onboard and validate log sources, use Linux scripts and APIs for testing, and perform purple-team exercises.

Required profile

• Minimum 2 years of experience in a SOC, incident response or blue-team environment.
• Hands-on experience with SIEM/XDR platforms (preferably Google SecOps) and alert analysis.
• Strong knowledge of email security, EDR, networking and basic cloud concepts.
• Familiarity with MITRE ATT&CK, the cyber kill chain and IOC/BIOC creation.
• Comfortable working with Linux, scripting fundamentals and API tools such as Postman.

Required skills

• SIEM / XDR (Google SecOps)
• Email security solutions
• Endpoint Detection & Response (EDR)
• Network traffic analysis & packet capture
• NGFW and WAF technologies
• MITRE ATT&CK framework
• IOC / BIOT creation
• Linux operating system
• Scripting (e.g., Bash, Python)
• API testing tools (Postman)
• OSINT and dark-web monitoring
• SOAR automation and purple-team testing