Security Operations Center Analyst - L2

About This Role

We’re Hiring: SOC L2 Analyst

Location: Mindfire Technologies Dubai, Abudhabi

Experience: Minimum 4–5 years in SOC / cybersecurity operations

Mindfire Technologies is looking for an experienced SOC L2 Analyst to join our Cyber Defense Center and support enterprise customer environments through advanced monitoring, triage, investigation, and incident response activities.

The ideal candidate should have hands-on SOC experience, strong security event analysis skills, and the ability to investigate alerts across SIEM, EDR, firewall, identity, cloud, and email security platforms.

Key Responsibilities

• Perform L2-level security event monitoring, triage, investigation, and escalation.
• Analyze alerts from SIEM, EDR, NDR, firewall, IDS/IPS, email security, cloud, and identity platforms.
• Validate security incidents, identify false positives, and determine true-positive attack activity.
• Conduct initial incident response, containment coordination, and evidence collection.
• Perform log analysis across Windows, Linux, network, firewall, VPN, cloud, and Active Directory environments.
• Investigate phishing, malware, brute-force attempts, suspicious logins, endpoint alerts, privilege misuse, and data exfiltration indicators.
• Support threat hunting, IOC searches, use-case tuning, and detection rule improvements.
• Prepare incident reports, investigation notes, shift handover reports, and customer-facing updates.
• Coordinate with L1 analysts, L3 specialists, customer IT teams, and incident response teams.
• Maintain SLA compliance and ensure timely escalation of critical incidents.

Required Skills & Experience

• Minimum 4–5 years of experience in SOC operations or any SOC analyst role.
• Good understanding of SIEM operations, correlation rules, log sources, alert triage, and incident handling.
• Hands-on experience with platforms such as Microsoft Sentinel, LevelBlue USM Anywhere, Splunk, QRadar, LogRhythm, or similar SIEM tools.
• Experience with EDR tools such as Microsoft Defender, CrowdStrike, SentinelOne, Sophos, Trellix, or similar.
• Strong knowledge of Windows Security Events, Active Directory, firewall logs, VPN logs, endpoint alerts, and email security alerts.
• Good understanding of MITRE ATT&CK, cyber kill chain, common attack techniques, and incident response lifecycle.
• Ability to analyze malware alerts, phishing indicators, suspicious PowerShell activity, brute-force attempts, lateral movement, and privilege escalation indicators.
• Strong documentation, communication, and shift handover skills.
• Willingness to work in SOC shifts as required.

Preferred Certifications

Security+, CEH, CySA+, SC-200, AZ-500, Splunk, QRadar, Microsoft Sentinel, or other SOC/security certifications will be an added advantage.

What We’re Looking For

We are looking for a technically strong, alert, and disciplined SOC professional who can independently handle L2 investigations, support customer environments, and contribute to improving detection and response maturity.

Company: Mindfire Technologies LLC

Location: Dubai / Abu Dhabi

Role: Full-time

Experience: 5+ years

Interested candidates can share their CV with us or connect with Mindfire Technologies for more details.

#Hiring #SOCL2Analyst #SOCAnalyst #CyberSecurityJobs #InformationSecurity #KochiJobs #MindfireTechnologies #SIEM #EDR #ThreatHunting #IncidentResponse #CyberDefense