Security Analyst

Job Title: Senior Administrator—SIEM (SO1)

Location: Next to Emirates Metro Station—Al Garhoud

Job Type: Full-Time

Project Name: Cyber Security Operations and Support

Experience Level: Level 1 Support

Job Description

We are looking for a Security Analyst—Level 1 Support with hands-on experience in SIEM platforms and Splunk monitoring to join our Cyber Security Operations and Support team. The ideal candidate will serve as the first line of defense, monitoring and responding to security alerts in a 24/7 environment. This role requires strong analytical skills and the ability to quickly identify potential security incidents.

Key Responsibilities:

• Monitor security events and alerts using SIEM tools, especially Splunk.
• Perform real-time analysis and triage of security logs and incidents.
• Escalate confirmed security incidents to Level 2/3 analysts with detailed documentation.
• Follow standard operating procedures (SOPs) for incident detection and response.
• Maintain daily activity logs and reporting for compliance and audit requirements.
• Work closely with senior security teams to improve alert detection and tuning rules.
• Participate in continuous improvement of monitoring processes and use case development.

Must-Have Skills

• Hands-on experience with SIEM platforms, particularly Splunk.
• Strong understanding of log analysis and event correlation.
• Familiarity with incident response workflows and security monitoring best practices.
• Ability to recognize indicators of compromise (IOCs) and suspicious activity patterns.
• Excellent written and verbal communication skills.
• Willingness to work in rotational shifts if required.

Preferred Qualifications

• Bachelor’s degree in Computer Science, Cybersecurity, or a related field.
• Industry certifications such as CompTIA Security+, Splunk Core Certified User, or Certified SOC Analyst (CSA).
• Exposure to other security tools like antivirus, EDR, or firewall logs.