Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
Job Summary
We are seeking CSOC Analyst L1 (Tier 1) professionals to join our Security Operations Center (SOC) team. The role involves first-level monitoring, detection, and triage of cybersecurity incidents.
The analyst will continuously monitor security alerts, perform initial triage, and escalate validated incidents to Tier 2 analysts with proper context and supporting data.
Key Responsibilities
1. Security Monitoring & Alert Management
- Continuously monitor security alerts from multiple tools including SIEM, EDR, and monitoring systems
- Track and manage alert queues to identify potential threats
2. Incident Triage
- Perform initial analysis of alerts to determine:
- False positives
- Policy violations
- Intrusion attempts
- Security compromises
- Classify and prioritize security incidents
3. Escalation Handling
- Gather relevant logs, data, and context for incident escalation
- Escalate validated incidents to Tier 2 analysts for deeper investigation
- Ensure proper documentation of all escalated cases
4. Security Tools Monitoring
- Monitor health and performance of:
- Security sensors
- Endpoints
- Detection tools
5. Reporting & Documentation
- Maintain incident logs and reports
- Ensure accurate documentation of alerts, actions taken, and escalation details
Technical Skills Required
- Strong knowledge of:
- Windows & UNIX/Linux operating systems
- TCP/IP (IPv4 & IPv6)
- Hands-on experience or knowledge in:
- SIEM tools (e.g., Splunk, QRadar, ArcSight)
- EDR tools
- Intrusion Detection & Prevention Systems (IDS/IPS)
- Firewalls & Anti-malware solutions
- Security orchestration and automated response (SOAR) concepts
Qualifications
- Bachelor’s degree in Cyber Security, IT, Computer Science, or related field
Required Certifications
- CompTIA CySA+ (Cybersecurity Analyst Certification)
- Incident Response Fundamentals Certification
Preferred Certifications
- SIEM certifications (Splunk / QRadar / ArcSight)
- Certifications from:
- SANS / GIAC
- ISACA
- (ISC)²
Key Competencies
- Strong analytical and problem-solving skills
- Attention to detail
- Ability to work in a 24/7 SOC environment
- Good communication and documentation skills
- Ability to handle high-pressure situations
Key Skills
Ranked by relevanceReady to apply?
Join Vistas Global and take your career to the next level!
Application takes less than 5 minutes