SOC L2

**Department**:IT Security**Job Type**:Full Time**Location**:RiyadhSOC L2 Job description:
**Responsibilities**:

- Assist and provide guidance on L1 Analysts regarding investigations and possible security incidents.
- Perform tier 2 incident analysis and response for escalated incidents.
- Perform incident response for verified security incidents.
- Communicate with SOC management and customers regarding investigations and status updates.
- Design, create and maintain custom SIEM content (creation, evaluation and tuning of rules, reports, dashboards, etc.).
- Design, create and maintain custom tools that support incident handling and response activities
- Conduct research on attacker methodologies and tactics, system vulnerabilities and key indicators of attacks and exploits to enhance the threat and technical intelligence of ENCODE Cyber Defense services.
- Development and improvement of Infratech knowledge base and incident handling procedures and playbooks.

Position Requirements:

- 3+ years of Information Security with at least 2 years of experience in incident analysis and response activities. Experience in a SOC environment is preferred.
- Demonstrated experience in a SIEM product.
- Knowledge of current security trends, threats, and techniques.
- Demonstrated experience in one or more of the following fields will be considered a strong plus: Incident Response, Forensics, Threat Intel, Malware Analysis.
- Experience with scripting (Python, PowerShell or bash scripting).
- Good verbal and written communication skills in both Arabic and English.
- IT Security Certification such as GCIH|GCIA|CEH|CHFI|CISSP|GCFA|GREM will be considered as an advantage
- Preferred to be Saudi