- 経験
- 5+ yrs
- 給料
- —
- 求人情報
- 1
- 投稿済み
- 2時間前
Where you'll work
仕事内容
Role Overview
An established cybersecurity operations function is seeking a seasoned SOC Senior Analyst to strengthen its security monitoring and incident handling capabilities. This role is based in Doha, Qatar and requires a professional with deep experience in security operations, incident response, SIEM-driven monitoring, threat detection, and Google SecOps / Google Chronicle.
Key Responsibilities
- Continuously review and investigate security alerts and events across SIEM, EDR, and related defensive tools.
- Handle the full incident lifecycle, including identification, analysis, triage, escalation, containment support, and remediation follow-up.
- Examine network, application, and system logs to uncover suspicious behavior and possible security incidents.
- Use Google SecOps / Google Chronicle for detection and investigation work, including UDM-based detections, YARA-L and rule-driven detections, threat intelligence alerts, behavioral alerts, Chronicle searches, timeline analysis, and entity-focused investigations.
- Build, refine, and optimize detection logic and SOC use cases to improve coverage and operational efficiency.
- Lower false positives while increasing the precision and effectiveness of security detections.
- Perform vulnerability assessments and contribute to broader risk reduction activities.
- Assist with security controls, audit readiness, policy alignment, procedures, and compliance-related tasks.
- Draft security reports, summarize findings, and recommend improvements to strengthen the organization’s security posture.
- Coordinate with internal stakeholders and teams to drive effective incident resolution.
Experience and Technical Requirements
The role calls for at least 5 years of hands-on experience in SOC or cybersecurity operations, with MSSP exposure considered an advantage. Strong working knowledge is expected in SIEM monitoring, log analysis, incident response, threat detection, network and system security, endpoint protection, and email/web security, including APT defense solutions.
Candidates should also have practical experience with Google SecOps / Google Chronicle for event monitoring, advanced searching, investigation, detection engineering, and alert tuning. Familiarity with security frameworks and standards such as ISO 27001, NIST, COBIT, and ITIL practices is also required.
Preferred Certifications
- CEH
- Security+
- CISSP, CISA, or CRISC
- CCSP or CCSE
- Google SecOps Certification
Profile
This opportunity is best suited to cybersecurity professionals who are motivated by threat detection, continuous monitoring, and protecting enterprise environments.
Application Note
Interested candidates can share an updated CV or connect for further information.