SOC Analyst L1

CyberProof is a cyber security services and platform company whose mission is to help our customers react faster and smarter – and stay ahead of security threats, by creating secure digital ecosystems. CyberProof automates processes to detect and prioritize threats early and respond rapidly and decisively.

CyberProof is part of the UST Global family. Some of the world’s largest enterprises trust us to create and maintain secure digital ecosystems using our comprehensive cyber security platform and mitigation services.

Join our team and contribute to the security mission for one of our prominent clients, a technology solutions provider to the travel industry. As a Cyber Security Analyst, you will be instrumental in protecting their digital assets and upholding their cyber integrity.

Main tasks and accountabilities:

• Resolve, escalate, report, and raise recommendations for resolving and remediating security incidents.
• Be an escalation point for investigations of clients and suggest optimization activities to improve their performance.
• Proactively monitor and review threats and suspicious events from customers participating in the service.
• Handle the advanced monitoring of system logs, SIEM tools, and network traffic for unusual or suspicious activity Set up SIEM solutions and troubleshoot connectivity issues.
• Investigate and resolve security violations by providing post-mortem analysis to illuminate issues and possible solutions.
• Collate security incident and event data to produce monthly exception and management reports.
• Report unresolved network security exposure, misuse of resources, or noncompliance situations using defined escalation processes.
• Assist and train team members in the use of security tools, the preparation of security reports, and the resolution of security issues.
• Develop and maintain documentation for security systems and procedures.
• Maintain excellent customer satisfaction through professional, proactive and personal service.

What do we expect from you?

• Proficient in security tools including SIEM (Splunk, Sentinel), EDR (CrowdStrike, Windows Defender).
• Knowledgeable in vulnerability management, threat intelligence, risk scoring, and deception technology tools.
• Knowledge of ticketing, triage and forensics capabilities and toolsets
• Experienced with various security technologies and frameworks, including firewalls, IDS/IPS, and standards like ISO, NIST, CIS, CSA.
• Demonstrated ability to deploy systems/applications and independently work on complex security problems.
• Capable of handling fast-paced, dynamic environments with strong attention to detail and effective time management.
• Skilled in analytical, communication, customer service, and troubleshooting, with an emphasis on technical security control design.
• Familiar with automating security controls and routine tasks via scripting techniques.
• Understanding of cloud security control frameworks, like NIST CSF and CSA.
• Excellent communicator, able to articulate technical details clearly and work well in both independent and team settings.
• Enthusiastic and adaptable with an entrepreneurial approach to cybersecurity challenges and solutions.
• Fluent in English.
• Having worked in a SOC before would be an advantage.

What do we offer?

• 23 days of Annual Leave plus the 24th and 31st of December as discretionary days.
• SOC working hours 24/7. Rotating shifts (morning, afternoon and night shifts).
• Numerous benefits (Heath Care Plan, teleworking compensation, Life and Accident Insurances).
• `Retribución Flexible´ Program: (Meals, Kinder Garden, Transport, online English lessons, Heath Care Plan…)
• Free access to several training platforms
• Professional stability and career plans
• Referral program
• The option to pick between 12 or 14 payments along the year.
• Real Work Life Balance measures (flexibility, WFH or remote work policy, compacted hours during summertime…)