L1 SOC Analysts

Job Advertisement – L1 SOC Analyst (Level 1)

Location: Qatar
Duration: 3 Years
Salary: Based on merit

Role Summary:
The L1 SOC Analyst is the first line of defense in the Security Operations Center (SOC). This role is responsible for real-time monitoring, detection, and escalation of security incidents, ensuring timely responses to potential threats.

Key Responsibilities:

• Monitor SIEM and other security monitoring tools for alerts and suspicious activity.
• Perform initial triage to assess severity and potential impact of incidents.
• Escalate high-priority incidents to L2 Analysts or SOC Manager.
• Document incidents, findings, and actions taken in tracking systems.
• Support in basic investigations of malware, phishing, and intrusion attempts.
• Follow SOC playbooks and standard operating procedures.

Requirements:

• Basic knowledge of cybersecurity concepts, threats, and attack vectors.
• Familiarity with SIEM tools (e.g., Splunk, QRadar, Microsoft Sentinel).
• Understanding of TCP/IP, networking fundamentals, and operating systems.
• Strong analytical and communication skills.
• Willingness to work in 24x7 shift rotations.
• Experience in SOC setup, administration, and management is an advantage.
• Hands-on with Windows (Event Viewer, PowerShell) & Linux CLI (logs, services).
• Ability to analyze logs from firewalls, proxies, and endpoints.
• Effective communication and documentation skills.

Certifications (at least two required):

• CEH, GIAC, CySA+, ECIH, Microsoft Sentinel SIEM, Splunk certification, or equivalent.

Job Type: Full-time

Application Question(s):

• Do you have prior experience working in a Security Operations Center (SOC)?
• How many years of professional experience do you have in cybersecurity or SOC monitoring roles?
• Do you hold at least two relevant cybersecurity certifications (e.g., CEH, GIAC, CySA+, ECIH, Microsoft Sentinel SIEM, Splunk, etc.)? please mention
• Are you comfortable working in 24x7 shift rotations, including nights, weekends, and holidays?
• How would you rate your knowledge of networking fundamentals (TCP/IP, DNS, HTTP, ports, subnets, firewall logic)?
• What is your current and expected monthly salary (QAR)? Notice period?