Level 2 Security Operations Center (SOC) Analyst

CCDS is at the forefront of cybersecurity solutions, seeking a skilled Saudi Level 2 Security Operations Center (SOC) Analyst to enhance our Security Operations team. In this mid-level position, you will take charge of monitoring and responding to security incidents, performing in-depth analysis, and providing mentorship to junior analysts. This role offers an exciting opportunity to significantly contribute to the security posture of CCDS and gain exposure to advanced cybersecurity technologies and techniques.

A Level 2 SOC Analyst is responsible for the detailed analysis, handling, and resolution of security incidents escalated from Level 1. They also contribute to threat hunting and improving security processes. Their day-to-day tasks typically include:

• Advanced Security Alert Analysis:
  • Perform in-depth analysis of complex security alerts, utilizing various security tools and techniques.
  • Investigate potential security breaches and malicious activities.
  • Identify and analyze root causes of security incidents.
• Incident Response and Handling:
  • Lead incident response activities, following established procedures and protocols.
  • Contain and remediate security incidents to minimize impact.
  • Coordinate with other teams to address security issues.
• Threat Hunting:
  • Proactively search for threats within the organization's environment using various techniques and tools.
  • Develop and refine threat hunting methodologies.
  • Utilize threat intelligence to identify and investigate potential threats.

• Malware Analysis:
  • Perform basic malware analysis to understand malware behavior and impact.
  • Utilize sandbox environments to detonate and analyze suspicious files.
• Vulnerability Management:
  • Assist in vulnerability scanning, assessment, and remediation efforts.
  • Analyze vulnerability reports and prioritize remediation efforts.
• Security Tool Optimization:
  • Tune and optimize security tools to improve detection accuracy and reduce false positives.
  • Contribute to the development of new security rules and signatures.
• Documentation and Reporting:
  • Create detailed incident reports, including technical findings, timelines, and remediation actions.
  • Document incident response procedures and playbooks.
  • Present security findings and recommendations to stakeholders.
• Mentorship and Guidance:
  • Provide guidance and mentorship to Level 1 SOC Analysts.
  • Share knowledge and expertise with other team members.
• Security Process Improvement:
  • Identify areas for improvement in security processes and procedures.
  • Recommend and implement changes to enhance security operations.
• Compliance:
  • Ensure adherence to relevant security policies, regulations, and compliance requirements (e.g., GDPR, HIPAA, PCI DSS).