L1 SOC Analyst

Job description
L1 SOC Analyst

Job Summary:

We are looking for a skilled and dedicated L1 Security Operations Center (SOC) Analyst with expertise in Information Security Operations to join our dynamic team. The ideal candidate will be responsible for monitoring security systems, detecting and responding to security incidents and intrusions, and ensuring compliance with security standards. This role requires hands-on experience with security technologies, along with strong analytical and problem-solving skills.

Responsibilities:
• Continuously monitor security alerts from SIEM and other security tools.
• Identify and analyze potential security threats, vulnerabilities, and incidents.
• Escalate critical alerts to L2/L3 analysts as per escalation procedures.
• Incident management and response, including incident triage in accordance with ISO 27001 compliance standards.
• Document findings and response actions in incident management systems.
• Assist in containment, mitigation, and remediation efforts.
• Stay updated with emerging threats and attack patterns. Correlate security alerts with external threat intelligence sources.
• Perform vulnerability and risk assessments to identify and prioritize potential security risks and vulnerabilities.
• Generate and maintain reports on security incidents, vulnerabilities, and response actions.
• Communicate security risks and recommendations to relevant stakeholders.
• Analyze security logs from various devices (firewalls, IDS/IPS, endpoints).
• Support forensic investigations by gathering relevant logs and evidence.
• Contribute to security awareness initiatives and training.
• Utilize hands-on experience with security technologies such as firewalls, IDS/IPS, SIEM, antivirus, and vulnerability scanning tools.

Requirements:
• Bachelor’s degree specializing in Cybersecurity
• Minimum of 06 months experience in a Security Operations Center (SOC) or IT Security role.
• Strong communication skills, problem-solving abilities, and a proactive approach to customer service.
• Familiarity with SIEM and EDR tools (e.g., Splunk, IBM QRadar, SentinelOne, CrowdStrike).
• Operate effectively within a 24×7 structured roster-based IT environment (Hybrid).
• Ability to work under pressure, adapt to new technologies quickly, and operate effectively in a multinational team.
• Familiarity with ISO 27001/27701 compliance and experience working with foreign clients is a plus.
• Commitment to following company policies and upholding the highest ethical standards.
• Experience analysing security logs from various sources
• Certifications such as CompTIA Security+, Certified SOC Analyst (CSA), or GIAC Security Essentials (GSEC) or any other cloud security certifications are preferred but not mandatory.

EvonSys (Pvt) Ltd collects your Personally Identifiable Information (PII) for the purpose of selecting candidates for the recruitment process.

Please read the EvonSys privacy policy to understand how we collect, use, and disclose your personal data as well as your rights as a Data subject/ PII Principal on https://www.evonsys.com/privacy-policy.

By submitting your resume to us, you acknowledge that you have reviewed and agreed to the terms outlined in the EvonSys Privacy Policy and given concent to process your Personally Identifiable Information (PII)