TechensGlobal | SOC

Tips: Provide a summary of the role, what success in the position looks like, and how this role fits into the organization overall.

We are looking for experienced SOC L2 and L3 Engineers to join our team If you’re skilled in cybersecurity, threat detection, and incident response, and have experience with leading SIEM tools like Elastic Security, IBM QRadar, and Microsoft Sentinel , we’d love to hear from you.

Role Description: As an SOC L2/L3 Engineer, you will play a critical role in defending our organization and clients against cyber threats. You will handle advanced threat detection, conduct detailed incident investigations, and provide actionable insights to improve security measures. This position requires expertise in analyzing security events, identifying vulnerabilities, and enhancing security operations processes.

Responsibilities:

• Monitor and analyze security events using Elastic Security, IBM QRadar, and Microsoft Sentinel.
• Identify and investigate suspicious activity, potential threats, and security incidents.
• Perform in-depth analysis, root cause analysis, and threat hunting to enhance threat detection and prevention.
• Manage and respond to incidents, including triaging, containment, and remediation support.
• Develop and update security documentation, including incident reports, playbooks, and response procedures.
• Collaborate with cross-functional teams to strengthen security protocols and advise on threat mitigation strategies.
• Actively contribute to continuous improvement efforts for SOC processes and threat detection capabilities.

Qualifications:

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.
• 2+ years (L2) / 5+ years (L3) of experience in a Security Operations Center (SOC) or related security role.
• Hands-on experience with SIEM tools: Microsoft Sentinel, IBM QRadar, and Elastic Security
• Strong knowledge of cybersecurity principles, threat detection, incident response, and malware analysis.
• Familiar with SOC onboarding activities such as integrating log sources.
• Familiarity with network protocols, firewall management, IDS/IPS systems, and endpoint security solutions.
• Relevant certifications (e.g., CEH, CompTIA Security+, or SIEM vendor certifications) are a plus.
• Excellent communication, presentation, problem-solving skills, attention to detail, and the ability to work in a fast-paced environment.