SOC L1 Analyst

İş Təsviri

BandB

We are actively hiring L1 SOC Analyst to join our fast-growing cybersecurity company focused on delivering MSSP services across various industries. This role offers opportunity to work with the wide range of security tools and technologies while supporting multiple clients through 24/7 monitoring, detection, and response. You’ll be part of a skilled team driving security operations in a dynamic and evolving environment.

Note that candidate must be an Azerbaijani national.

Responsibilities

Participate in 24/7 security monitoring, working in three rotating shifts (morning/afternoon, evening, night).
Investigate and triage security incidents within defined SLAs.
Serve as the first line of defense in security operations, performing initial containment and response actions.
Provide analysis insights to Incident Response and Threat Detection teams to improve detection rules and playbooks.
Communicate clearly with internal departments and external customers during investigations and enrichment processes.
Utilize and manage various security tools and platforms, including: SIEM (e.g., Splunk, Elastic, IBM QRadar, MS Sentinel), EDR/XDR (e.g., Crowdstrike Falcon, Cortex XDR, MDE), SOAR (e.g., Cortex XSOAR, Splunk SOAR), Threat Intelligence (TI) platforms
Requirements

Foundational knowledge of computer networking, including: OSI and TCP/IP models; IP addressing, routing/switching, firewalls; Network protocols and traffic analysis (e.g., using Wireshark); Common network attack types (Layer 2/3 attacks, DoS/DDoS, web-based attacks)
Foundational knowledge of Windows and Linux operating systems
Familiarity with Active Directory environments, including architecture, common components, and attack techniques.
Knowledge of malware types, infection vectors, and remediation methods.
Experience with phishing analysis, including: Recognizing common phishing indicators, understanding and analyzing email headers
Experience with at least one SIEM platform for investigation and correlation.
Familiarity with security technologies such as: Antivirus, EDR/XDR, SOAR, NGFW, WAF, etc.
Soft skills, such as: strong analytical and problem-solving skills, clear communication skills – both written and verbal, eagerness to learn and proactively support the SOC team
Willingness to work in shift-based schedules
Preferred:

Bachelor’s degree in IT, Cybersecurity, or related field
Industry certifications such as: CCNA, CompTIA Security+ / CySA+, Blue Team Level 1 (BTL1), INE Cybersecurity Certifications, etc.
Salary: upon the interview

Interested candidates can send their CV to the e-mail address in the Apply for job button by mentioning SOC L1 Analyst in the subject line.