SOC analyst L3

Job Title: SOC Analyst L3

Location: Paris

Contract Length: 12 months recurring

Remote Working: 2 days a week on site, 3 days a week remote

Job Overview:

My client is seeking an experienced and highly skilled SOC Analyst L3 to join our Security Operations Center (SOC) team. The ideal candidate will have in-depth expertise in monitoring, detecting, analyzing, and responding to security threats using Splunk and other advanced security tools. This position requires a strong understanding of threat intelligence, incident response, and proactive security measures to safeguard the organization's critical infrastructure and data.

Key Responsibilities:

Security Monitoring & Analysis:

• Utilize Splunk Enterprise Security (ES) and other security tools to continuously monitor and analyze security alerts and events. Identify patterns, correlations, and indicators of compromise (IoCs) to prevent potential security breaches.

Threat Detection & Reporting:

• Develop, refine, and tune Splunk queries and alerts to detect suspicious activity, vulnerabilities, and evolving attack tactics. Provide detailed analysis and documentation of threats, incidents, and trends to leadership.

Splunk Use Case Development:

• Design and implement Splunk use cases to improve the detection of advanced persistent threats (APTs) and other sophisticated attack vectors. Write and optimize complex SPL (Search Processing Language) queries and dashboards.

Security Incident Documentation:

• Maintain comprehensive records of security incidents, responses, and resolutions. Prepare post-incident reports, including root cause analysis and recommendations for preventing future incidents.

Threat Intelligence Integration:

• Integrate threat intelligence feeds into Splunk to enhance detection capabilities and enrich security alerts with context. Analyze external threat data to inform security strategy and proactively mitigate risks.