Key Responsibilities
Monitor and analyze security alerts generated by Wazuh SIEM (or similar platforms).
Perform incident triage, investigation, containment, and response.
Support patch management cycles and vulnerability assessments to identify and mitigate risks.
Generate and maintain detailed reports on incidents, vulnerabilities, and security trends.
Collaborate closely with IT and security teams to improve the organization’s security posture.
Requirements
Minimum 3+ years of experience as a SOC Analyst or in a similar cybersecurity role.
Hands-on experience with Wazuh SIEM (or comparable SIEM tools).
Familiarity with integration of SIEM with network devices, servers, end points and similar.
Good knowledge of Linux, cron jobs and service restoration within Linux.
Strong understanding of vulnerability assessment and patch management processes.
Knowledge of incident response frameworks, log analysis, and threat detection techniques.
Excellent analytical, troubleshooting, and communication skills.
Good understanding of network/server/O365 concepts.
Ability to work in rotational shifts.
Preferred / Nice to Have
Familiarity with the MITRE ATT&CK framework.
Scripting knowledge (Python, PowerShell, or similar) for automation and analysis.
Exposure to cloud security monitoring and controls.
Relevant industry certifications such as CompTIA Security+, CEH, Certified SOC Analyst, or equivalent.
