Cyber Security Analyst - Tier 1
EndavaRomania9 hours ago
Full-timeRemote FriendlyInformation Technology
Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
Company Description
Technology is our how. And people are our why. For over two decades, we have been harnessing technology to drive meaningful change.
By combining world-class engineering, industry expertise and a people-centric mindset, we consult and partner with leading brands from various industries to create dynamic platforms and intelligent digital experiences that drive innovation and transform businesses.
From prototype to real-world impact - be part of a global shift by doing work that matters.
Job Description
The Tier 1 SOC Analyst is part of the front line of our Security Operations Center, responsible for continuous monitoring, initial investigation, and rapid response to security alerts and incidents. You will be acting as the first point of contact for detecting suspicious activity, escalating threats, and ensuring the environment remains secure.
Strong knowledge of security threats, incident detection technologies, and investigation techniques is expected. Candidates should demonstrate adaptability, willingness to work in 24x7 shifts, and eagerness to learn emerging security tools and techniques.
Responsibilities:
Experience:
Discover some of the global benefits that empower our people to become the best version of themselves:
Technology is our how. And people are our why. For over two decades, we have been harnessing technology to drive meaningful change.
By combining world-class engineering, industry expertise and a people-centric mindset, we consult and partner with leading brands from various industries to create dynamic platforms and intelligent digital experiences that drive innovation and transform businesses.
From prototype to real-world impact - be part of a global shift by doing work that matters.
Job Description
The Tier 1 SOC Analyst is part of the front line of our Security Operations Center, responsible for continuous monitoring, initial investigation, and rapid response to security alerts and incidents. You will be acting as the first point of contact for detecting suspicious activity, escalating threats, and ensuring the environment remains secure.
Strong knowledge of security threats, incident detection technologies, and investigation techniques is expected. Candidates should demonstrate adaptability, willingness to work in 24x7 shifts, and eagerness to learn emerging security tools and techniques.
Responsibilities:
- Monitor SOAR, SIEM, IDS/IPS, endpoint, and network security tools for alerts and anomalies.
- Perform triage of incoming security events to assess severity, scope, and potential impact.
- Investigate alerts to differentiate false positives from genuine threats.
- Document findings clearly and escalate incidents according to SOC playbooks.
- Initiate containment measures for confirmed incidents (e.g., isolating endpoints, disabling accounts).
- Support vulnerability and patch management activities by monitoring for unpatched systems.
- Maintain situational awareness of current threats and common attack techniques (e.g., phishing, malware, brute force).
- Contribute to incident reports and post-incident reviews.
- Use SOAR platforms for automating detection and response where possible.
Experience:
- 1-2 years of experience in Security Operations or in a SOC
- Experience with SIEM, EDR, IAM, DLP, and incident response.
- Familiarity with host-based detection and prevention suites (e.g., Microsoft Defender, Azure Security Center, Sentinel, Cisco Umbrella, M-Vision).
- Familiarity with security incident management tools (e.g., ServiceNow).
- Working knowledge of Microsoft and/or other OS environments.
- Solid understanding of TCP/IP, firewalls, VPNs, IDS/IPS, anti-virus, and endpoint protection.
- Basic understanding of firewall configuration and system patching.
- Experience with log analysis and malware detection.
- Familiarity with scripting languages (e.g., Python, Perl) is a plus.
- Certifications such as Microsoft Security Certifications, Comptia Sec+/CYSA, ISC2 CC are a plus
Discover some of the global benefits that empower our people to become the best version of themselves:
- Finance:
Competitive salary package, share plan, company performance bonuses, value-based recognition awards, referral bonus; - Career Development:
Career coaching, global career opportunities, non-linear career paths, internal development programmes for management and technical leadership; - Learning Opportunities:
Complex projects, rotations, internal tech communities, training, certifications, coaching, online learning platforms subscriptions, pass-it-on sessions, workshops, conferences; - Work-Life Balance:
Hybrid work and flexible working hours, employee assistance programme; - Health:
Global internal wellbeing programme, access to wellbeing apps; - Community:
Global internal tech communities, hobby clubs and interest groups, inclusion and diversity programmes, events and celebrations.
Key Skills
Ranked by relevanceReady to apply?
Join Endava and take your career to the next level!
Application takes less than 5 minutes