SOC Engineer

A leading organisation is seeking an experienced SOC Engineer to support its Security Operations Centre (SOC) in detecting, investigating, and responding to cybersecurity threats. This role is a contract position based in Dublin.

Key Responsibilities:

• Security Monitoring & Incident Response: Monitor security alerts, analyse threat intelligence, and respond to incidents using SIEM and other security tools.
• Threat Detection & Analysis: Conduct in-depth security investigations, identify threats, and provide recommendations for remediation.
• Log Analysis & Correlation: Analyse security logs from various sources, including firewalls, endpoint protection, and cloud environments, to detect anomalies.
• Incident Handling & Escalation: Coordinate with internal teams to investigate and remediate security incidents, escalating when necessary.
• Vulnerability Management: Work with IT teams to assess vulnerabilities, prioritise remediation efforts, and improve security posture.
• Security Automation & Scripting: Develop and maintain scripts to automate threat detection and response processes.
• Endpoint Security Management: Support and manage EDR/XDR solutions to protect against advanced threats.
• Cloud Security Monitoring: Monitor cloud security events and implement best practices to secure cloud environments, primarily within Azure.
• Threat Intelligence Integration: Leverage threat intelligence feeds to enhance detection and response capabilities.
• Security Tooling & Improvements: Assist in fine-tuning and optimising security tools such as SIEM, IDS/IPS, DLP, and endpoint security.
• Compliance & Reporting: Ensure adherence to security policies and regulatory requirements (e.g., GDPR, ISO 27001) and generate security reports.
• Collaboration & Training: Work closely with security teams and stakeholders to improve security awareness and response processes.

Required Qualifications & Experience:

• Bachelor's or Master's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• Minimum of 5 years of experience in a SOC or security operations role.
• Strong experience with SIEM platforms (e.g., Splunk, Microsoft Sentinel, QRadar) and security monitoring tools.
• Hands-on experience with IDS/IPS, EDR, DLP, and other security technologies.
• Knowledge of cybersecurity frameworks such as NIST, MITRE ATT&CK, and CIS Controls.
• Proficiency in incident response methodologies and forensic analysis.
• Experience with scripting languages (e.g., Python, PowerShell) for automation.
• Understanding of cloud security concepts and best practices, particularly in Azure.
• Security certifications such as CEH, GCIH, SOC Analyst, CISSP, or equivalent are preferred.
• Excellent analytical, problem-solving, and communication skills.

Preferred Skills:

• Experience in Azure security and cloud monitoring.
• Knowledge of threat hunting and advanced threat detection techniques.
• Familiarity with security orchestration, automation, and response (SOAR) platforms.
• Understanding of penetration testing methodologies and ethical hacking.
• Experience working in a fast-paced SOC environment.

Eligibility: Candidates must be eligible to work in Ireland or currently hold a valid Stamp 1G/4 Visa.