Overview
SOC Analyst Jobs in Abu Dhabi at INFRA ASSURE
ABOUT THE ROLE
The SOC Analyst is responsible for continuously monitoring, investigating, and validating security events across enterprise environments using SIEM, EDR, and related security technologies. The role focuses on identifying potential threats, performing alert triage, correlating security events, and assisting with incident response by validating and escalating confirmed incidents. Working alongside senior SOC analysts, the individual will also contribute to improving detection use cases and ensuring incidents are managed in line with established SOC procedures.
KEY RESPONSIBILITIES
- Monitor security alerts generated from SIEM, EDR, and other cybersecurity platforms to identify potential security threats.
- Perform investigation and validation of security alerts, including higher-complexity events, before escalating where required.
- Analyze recurring alerts to distinguish genuine threats from false positives and document findings appropriately.
- Correlate logs and events from multiple data sources to uncover suspicious activity and attack patterns.
- Execute established SOC procedures, playbooks, and runbooks for common security incidents such as phishing, malware infections, and unauthorized access attempts.
- Escalate verified security incidents to L2 analysts with complete investigation details and supporting evidence.
- Maintain accurate incident records and manage cases within ticketing or SOAR platforms while adhering to defined SLAs.
- Prepare routine security reports and operational summaries for review by senior SOC personnel.
- Assist in optimizing SIEM detection rules by identifying repetitive benign alerts and recommending tuning opportunities.
- Support incident investigations by gathering relevant logs, enriching Indicators of Compromise (IOCs), and documenting technical findings.
- Stay informed about evolving cyber threats, attack techniques, vulnerabilities, and security best practices.
REQUIRED EXPERIENCE
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related discipline. Equivalent industry experience may also be considered.
- 3–4 years of experience in cybersecurity, including a minimum of 2 years within a Security Operations Centre (SOC).
- Practical experience working with SIEM platforms such as Microsoft Sentinel, Splunk, IBM QRadar, or equivalent solutions.
- Exposure to EDR technologies, IDS/IPS, firewalls, and enterprise security monitoring tools.
- Good understanding of network security, endpoint protection, threat detection methodologies, and incident response processes.
- Experience with log analysis, security event correlation, IOC analysis, and execution of standard SOC playbooks.
- Strong analytical, problem-solving, documentation, and communication skills.
- Ability and willingness to work in a 24×7 rotational shift environment.
PREFERRED CERTIFICATIONS
Candidates possessing two or more of the following certifications will have an added advantage:
- CompTIA Security+
- EC-Council Certified SOC Analyst (CSA/C|SA)
- Certified Ethical Hacker (CEH)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GCIA)
- Microsoft Certified: Security Operations Analyst Associate (SC-200) (preferred)
- Splunk Core Certified User or Power User (desirable)
Pay: AED10,000.00 – AED15,000.00 per month
Application Question(s):
- Do you have experience with SIEM platform?
Location:
- Abu Dhabi (Preferred)
Work Location: In person
Title: SOC Analyst
Company: INFRA ASSURE
Location: Abu Dhabi