About This Role
A SOC Analyst Level 2 (L2) is responsible for advanced threat detection, incident investigation, and
response. This role acts as an escalation point for L1 analysts and leverages SIEM and SOAR platforms
to automate and orchestrate security operations.
Key Responsibilities
➢ Monitoring & Analysis
• Monitor security alerts from Splunk SIEM tool.
• Perform deep-dive analysis on escalated alerts from L1 analysts
• Identify false positives vs. real security incidents
• Correlate logs from multiple sources (firewalls, endpoints, proxy, email, IDS/IPS etc.)
➢ Incident Response
• Investigate and respond to security incidents (malware, phishing, insider threats, etc.)
• Conduct root cause analysis and impact assessment
• Execute containment, eradication, and recovery actions
• Document incidents and maintain case records
➢ SOAR Responsibilities
• Use SOAR platforms (e.g., Fortinet SOAR)
• Develop, modify, and optimize playbooks/runbooks
• Automate repetitive tasks (alert triage, enrichment, ticket creation)
• Perform automated response actions (block IPs, disable users, isolate endpoints etc..)
➢ Threat Intelligence & Hunting
• Analyze threat intelligence feeds and indicators of compromise (IOCs)
• Perform proactive threat hunting using logs and behavioural analysis
• Stay updated on latest threats, vulnerabilities, and attack techniques (MITRE ATT&CK)
➢ Reporting & Documentation
• Create incident reports and dashboards
• Provide recommendations to improve detection and response
• Maintain SOPs, playbooks, and knowledge base
➢ Collaboration
• Work with L1 analysts for guidance and escalation handling
• Coordinate with IT, network, and security teams
• Support compliance and audit requirements
Required Skills
➢ Technical Skills
• Strong experience with Splunk SIEM tool.
• Hands-on experience with any SOAR platforms.
• Knowledge of:
o Network security (TCP/IP, DNS, HTTP/S)
o Operating systems (Windows, Linux)
o Log analysis and correlation
• Familiarity with:
o EDR tools (Symantec)
o NDR tools (Vectra AI)
o Firewalls, IDS/IPS, Proxy (Bluecoat, Palo Alto, Cisco)
➢ Soft Skills
• Strong analytical and problem-solving skills
• Good communication and reporting abilities
• Ability to work in shifts (24/7 SOC environment)
• Attention to detail and quick decision-making
➢ Qualifications
• Bachelor’s degree in Cybersecurity / IT / Computer Science (or equivalent)
• 3–5 years of experience in SOC or cybersecurity operations
Preferred Certifications
• CompTIA Security+
• CEH (Certified Ethical Hacker)
• Splunk Certified Power User / Admin
• GIAC (GCIA, GCIH)
• SOAR platform certifications (if available)
Similar Jobs
SOC Analyst – Multiple Specializations
D24 Fintech · Dubai
We are looking for 3 SOC Analysts across **Crypto Incident Response,** **Digital Forensics \& Incident Response and Endpoint \& Network Security Operations** to monitor, investigate, and respond to security threats acros
4 days ago
Generate Resume ↗Senior SOC Analyst
PROOFOPS · Dubai
* **About the company** ProofOps is a cybersecurity services company helping organizations across the UAE and Middle East strengthen their security posture through practical, outcome\-driven programs. Our operations are
5 days ago
Generate Resume ↗SOC Analyst (Emirati)
Talents Tide · Abu Dhabi
**Hiring Now \| SOC Analyst \| Abu Dhabi** **Position:** SOC Analyst (Emirati) **Location:** Abu Dhabi Full\-time role Our client, a leading **Cybersecurity Company** in Abu Dhabi, is looking for a motivated **SOC Analys
6 days ago
Generate Resume ↗Level 1 SOC Analyst
SecurityHQ · Dubai
**Job Description** As our Level 1 SOC Analyst, you will be the first line of defence in our 24/7 Security Operations Centre. You will monitor security alerts, investigate potential threats, and escalate critical inciden
1 months ago
Generate Resume ↗Lead SOC Analyst (L3)
GCS · Abu Dhabi
**Lead SOC Analyst (L3\)** **Role Overview** We are looking for an experienced **L3 SOC Analyst** who can take ownership of major incident response efforts. This senior role blends hands‑on expertise with leadership: you
1 months ago
Generate Resume ↗SOC Analyst Level - 3
Blackford Technologies LLC-SPC · Abu Dhabi
Our client is a leading cybersecurity firm establishing a next\-generation Security Operations Center (SOC) to deliver world\-class monitoring, detection, and incident response capabilities. Built on advanced analytics,
1 months ago
Generate Resume ↗SOC Analyst Level - 1
Blackford Technologies LLC-SPC · Abu Dhabi
Our client is a leading cybersecurity firm establishing a next\-generation Security Operations Center (SOC) to deliver world\-class monitoring, detection, and incident response capabilities. Built on advanced analytics,
1 months ago
Generate Resume ↗SOC Analyst Level - 1
Visionary Tech Services · Abu Dhabi
Our client is a leading cybersecurity firm establishing a next\-generation Security Operations Center (SOC) to deliver world\-class monitoring, detection, and incident response capabilities. Built on advanced analytics,
1 months ago
Generate Resume ↗SOC Analyst Level - 3
Visionary Tech Services · Abu Dhabi
Our client is a leading cybersecurity firm establishing a next\-generation Security Operations Center (SOC) to deliver world\-class monitoring, detection, and incident response capabilities. Built on advanced analytics,
1 months ago
Generate Resume ↗Stop applying blindly.
Start getting hired.
Base Career automates the hardest parts of job searching — apply smarter, not harder.
AI Resume in 60s
Your resume rewritten for this exact role using the job description as the brief.
ATS-Optimized
Get past automated screening filters with the right keywords matched to each job.
Application Tracker
Track every job, follow-up, and interview in one visual kanban board.
Free plan · No credit card required