SOC L2 Analyst

2 months ago


Doha, Qatar Proztec Full time

**Job Title**: SOC L2 Analyst
**Reports to**: SOC Manager
**Department**: Information Technology Services

**Job Purpose**

The SOC L2 Analyst plays a key role in providing 24/7 security monitoring and incident response for IT and Operational Technology (OT) systems. This position focuses on investigating and responding to high-priority security incidents, particularly those targeting OT systems.

**Key Responsibilities**
- Investigate and analyze high-priority security incidents, especially those affecting OT systems.
- Serve as an escalation point for SOC L1 Analysts for IT and OT incidents.
- Analyze alerts from SIEM and other tools to assess potential threats to IT and OT infrastructures.
- Escalate critical security incidents to senior analysts or SOC L3 Analysts, especially for OT systems.
- Mentor SOC L1 Analysts, especially in handling OT-related security incidents.
- Respond to service requests and tickets related to OT systems that SOC L1 cannot handle.
- Manage SOC tickets and ensure incidents are resolved within SLA timeframes.
- Fine-tune detection rules and provide feedback to improve OT threat detection.
- Assist in creating reports and improving SOC processes related to OT environments.

**Key Result Areas**
- Ensure all IT and OT security incidents are handled within agreed SLAs.
- Manage SOC tickets and service requests efficiently, with timely resolution for OT-related issues.
- Help minimize SLA breaches, particularly for OT incidents.
- Ensure compliance with security standards such as ISO 27001 and OT-specific frameworks like NIST SP 800-82.

**Skills and Experience**
- 5+ years of experience investigating security incidents using SIEM solutions (e.g., Azure Sentinel, Splunk, ArcSight).
- Experience with vulnerability scanning tools (e.g., Qualys, Tenable) for both IT and OT infrastructures.
- Familiarity with security tools like EDR, NDR, IDS/IPS, Firewalls, Darktrace, and OT security tools for SCADA systems.
- Expertise in MITRE ATT&CK and understanding attack techniques for both IT and OT environments.
- Strong knowledge of network security, including OT-specific protocols like Modbus and DNP3.
- Experience in investigating logs from various sources, including OT devices and security tools.
- Familiarity with scripting tools like Python or PowerShell and OT automation tools.
- Understanding of OT security standards like NIST SP 800-82 and ISA/IEC 62443.

**Desirable Skills**
- Advanced knowledge of SIEM solutions, particularly for OT environments.
- Certifications in penetration testing or blue/purple team operations with a focus on OT security.
- Experience in training or mentoring junior SOC staff in OT incident detection.

**Certifications**
- Certifications such as GCIH, GMON, SC-200, or SIEM product certifications (Splunk, Azure Sentinel, etc.) are highly valued.

Pay: QAR6,000.00 - QAR12,000.00 per month


  • L2 SOC Analyst

    6 months ago


    Doha, Qatar Novel Overseas Corporation Full time

    **Job Description: 5+ Years** - Act as a bridge between SOC team and Customer’s Team - The scope of services rendered by the onsite cybersecurity resource will cover both IT and OT - The onsite cybersecurity resource will be responsible to investigate threats (as detected by SOC) and respond to them in a timely fashion. - He/she will be responding for...

  • SOC Senior Analyst

    2 months ago


    Doha, Qatar Proztec Full time

    **Job Title**: SOC Senior Analyst **Department**: Information Technology Services **Job Purpose** The SOC Senior Analyst (L3) is responsible for leading the investigation and response to complex security incidents, particularly those affecting Operational Technology (OT) systems like SCADA, ICS, and PLCs. You’ll be the go-to expert for handling major...

  • SOC Operator

    2 months ago


    Doha, Qatar Proztec Full time

    **Job Title**: SOC Operator (SOC L1 Analyst) **Reports to**: SOC Manager **Department**: Information Technology Services **Job Purpose** The SOC L1 Analyst plays a crucial role in monitoring and protecting both IT and Operational Technology (OT) environments, providing 24/7 support to detect and address security threats. The main tasks include initial...

  • L1 SOC Consultants

    6 months ago


    Doha, Qatar Al Zubarah Information Technology Full time

    **Role Overview**: The L1 SOC Consultants (Log Management) are responsible for monitoring and analyzing security event logs to identify potential security threats. This role involves working in a Security Operations Center (SOC) environment and triaging security alerts to ensure timely incident response and resolution. **Key Responsibilities**: - Analyze...

  • SOC Analyst

    3 months ago


    Doha, Qatar Ateca Consulting Full time

    Key Responsibilities: - Investigate and analyze complex security incidents, including advanced persistent threats, targeted attacks, and insider threats. - Provide guidance and mentorship to junior SOC Analysts to support their professional development. - Develop and maintain standard operating procedures for incident response and threat hunting...

  • Senior SOC Analyst

    2 weeks ago


    Doha, Qatar Mannai Corporation Full time

    **Role**: Senior SOC Analyst **- Monitoring and analysis of cyber security events with the use of (SIEM) and other tools. - SOAR experience to Design and configure automation and workbooks. - SIEM as MS sentinel and Q-radar and other tools use case management (alerts and reports) as per industry best practices. - Monitor EDR to detect and investigate...

  • Senior SOC Analyst

    6 months ago


    Doha, Qatar Hot & Cold International Consulting Full time

    Senior SOC Analyst Key Responsibilities - Monitoring and analysis of cyber security events with the use of (SIEM) and other tools. - SOAR experience to Design and configure automation and workbooks. - SIEM as MS sentinel and Q-radar and other tools use case management (alerts and reports) as per industry best practices. - Monitor EDR to detect and...


  • Doha, Qatar Intelligent Partners Full time

    **Job Title**: Security Operations Center (SOC) Analyst **Department**: Cybersecurity **Location**: Qatar (Must be resident in Qatar) **About Us**: We are a leading provider of Intelligent Transportation Systems (ITS) and cybersecurity solutions. We are expanding our Security Operations Center (SOC) and are seeking highly motivated and skilled individuals...


  • Doha, Qatar Cartafella Analytics Full time

    We are looking SOC Analyst-L1 for Qatar. **Description** Monitor the security events detected by the IBM QRadar SIEM system and identify the risks, threats, and attacks. - Analyze the security events to determine the root cause of the security incidents. - Respond to security incidents by providing remediation guidance and recommendations. - Develop and...

  • L2 Security Analyst

    7 months ago


    Doha, Qatar Novel Overseas Corporation Full time

    **Experience** L2 Security Analyst - 2 to 5 Years L3 Security Analyst - 4 to 6 Years **Job Description and Qualification** The Senior Splunk SIEM threat analyst who will be responsible for maintaining and optimizing the customer SIEM environment whenever needed. Additionally, he will carry out day-to-today operation tasks including investigations, threat...


  • Doha, Qatar Al Zubarah Information Technology Full time

    _**Role Overview**:_ The SOC Lead Detection and DFIR (Digital Forensics and Incident Response) is responsible for leading a team of cybersecurity analysts in detecting and responding to security incidents. This role involves overseeing the day-to-day operations of the Security Operations Center (SOC), managing incident response activities, and conducting...

  • SOC L1 Analyst

    6 months ago


    Doha, Qatar Novel Overseas Corporation Full time

    **Experience **:4+ Years **Experience and Qualification**: - 4+ years of hands on experience in Information Security domain. - 3+ years of experience in SOC NOC environments. - Expert knowledge in in SIEM solutions: - Creating use cases, dashboards, reports. - Integrating with threat intelligence feeds. - Running complex queries. - Advanced hands on...

  • Security Analyst

    3 months ago


    Doha, Qatar Mindstream Full time

    Permanent hiring for Security Analyst Salary :Qatar Onsite 14000 QAR /Remote 8000 QAR Security Analyst (L1/L2) with Microsoft Sentinel **Job Description**: We are seeking a proactive and skilled Security Analyst (L1/L2) with experience in Microsoft analyzing, and responding to security incidents and threats using Microsoft Sentinel. This role requires a...

  • L1 Analyst

    4 months ago


    Doha, Qatar Swan Global WLL Full time

    **L1 Analyst** **Job Summary**: The Level 1 Incident Monitoring and Analysis Specialist is responsible for real-time monitoring and initial analysis of security events. This role serves as the first line of defense in identifying potential security incidents and plays a crucial part in the security operations center (SOC) by ensuring that incidents are...


  • Doha, Qatar Intelligent Partners Full time

    **Job Title**: Threat Intelligence Analyst **Department**: Cybersecurity **Location**: Qatar (Must be resident in Qatar) **About Us**: We are a leading provider of Intelligent Transportation Systems (ITS) and cybersecurity solutions. We are expanding our Security Operations Center (SOC) and seeking a highly motivated and skilled Threat Intelligence...

  • Cyber Security Manager

    6 months ago


    Doha, Qatar Qatar Airways Full time

    **About Role** **Role and Responsibilities** - Must be able to lead a 24x7 team of SOC Analysts and Senior Analysts. Also you must be able to participate in rotation on call schedule. - Must be able to work collaboratively with Incident Response and Cyber Security Testing teams. Having the ability to work outside of normal working hours as required due to...

  • Cyber Security Analyst

    7 months ago


    Doha, Qatar Qatar Airways Full time

    About Role Role and Responsibilities - Hands-on administration of the various cyber security products in Qatar Airways such as Distributed Denial of Service (DDOS) appliances, Intrusion Prevention Systems (IPS), Web Application Firewalls (WAF), Endpoint Detection and Response (EDR) solutions, Application Whitelisting Solutions etc. - Carry out Malware...

  • Cyber Security

    2 months ago


    Doha, Qatar Virtusa Full time

    Must Have : 24/7 Monitoring, Azure Log Analytics, CCSP, Cyber Security SOC Operations - L2, Defender XDR, KQL, MITRE ATT&CK Framework, Microsoft AZ500, Microsoft SC200, Microsoft Sentinel, Sentinel Use Case Creation Additional Skills : 24/7 Monitoring, Azure Log Analytics, CCSP, Cyber Security SOC Operations - L2, Defender XDR, KQL, MITRE ATT&CK Framework,...

  • Security Architect

    14 hours ago


    Doha, Qatar Intelligent Partners Full time

    **Job Title**: Security Architect **Department**: Cybersecurity **Location**: Qatar (Must be resident in Qatar) **About Us**: We are a leading provider of Intelligent Transportation Systems (ITS) and cybersecurity solutions. We are expanding our Security Operations Center (SOC) and seeking a highly motivated and skilled Security Architect to join our...


  • Doha, Qatar K20S Kinetic Technologies Private Limited Full time

    **Job Title**: Senior Threat Hunter Location: Qatar Experience Level: 15+ years Job Description: As a Senior Threat Hunter, you will be responsible for leading and conducting advanced threat hunting activities to identify and neutralize potential cyber threats within our organization. You will leverage your extensive knowledge and experience in cybersecurity...