Security Operations Centre (SOC) Engineer

Roles & Responsibilities:

• Develop and implement a threat hunting framework to structure and manage threat hunting initiatives effectively.
• Refine methodologies and procedures to enhance the organization's detection and response to advanced threats.
• Continuously improve threat hunting techniques, processes, and tools to strengthen the overall cybersecurity posture.
• Stay updated with the latest vulnerabilities, security trends, cyber threats, and hacking methodologies.
• Conduct research on emerging threats and vulnerabilities and recommend strategies to enhance security.
• Conduct proactive threat hunting exercises to detect and investigate potential security incidents.
• Document findings, analysis, recommendations, and investigation results in comprehensive reports for stakeholders.
• Develop and fine-tune security monitoring rules, correlation logic, and detection signatures.
• Utilize SIEM, network traffic analysis tools, EDR systems, vulnerability management systems, and threat intelligence platforms for security operations.
• Work closely with incident response, security operations, and threat intelligence teams to share findings and collaborate on investigations.
• Develop and implement a cyber intelligence framework to collect, process, and leverage intelligence for decision-making.
• Integrate the cyber intelligence framework with the SOC and incident response teams to enhance threat detection.
• Monitor multiple intelligence sources, including threat intelligence feeds, dark web forums, social media, and vendor reports, to identify emerging threats.
• Analyze collected threat intelligence data to identify patterns, trends, and cybersecurity risks.
• Conduct in-depth analysis of threat actors, motivations, capabilities, and tactics, providing insights on risks and impacts.
• Produce regular and ad-hoc reports, briefings, and alerts on emerging threats, trends, and risk assessments for stakeholders.
• Provide technical intelligence in an actionable format for various teams, including senior management and incident responders.
• Support security incidents by providing timely and accurate intelligence, assisting in containment, remediation, and recovery strategies.
• Assist in vulnerability management efforts by analyzing intelligence to identify exploit trends and prioritizing mitigation activities.
• Collaborate with threat hunters and cybersecurity teams to refine threat hunting strategies based on intelligence insights.

Qualifications & Skills:

• Fundamental knowledge of application security, including interpretation of HTTP response codes and WAF violations.
• Strong understanding of network security best practices.
• Familiarity with cyber threats, hacking methodologies, and attack techniques.
• Strong problem-solving skills and the ability to work under pressure.
• Willingness to learn and adapt in a fast-paced security environment.
• Additional certifications such as CCNA, CCNP, CISSP, or other relevant security certifications are a plus.
• Flexibility to work beyond business hours, including weekends, when necessary.

To apply, simply click the "Apply" button or send your updated profile to recruit@percept-solutions.com

EA Licence No.:18S9405 / EA Reg. No.:R1330864

Percept Solutions is expanding and actively seeking talented individuals. We encourage applicants to follow Percept Solutions on LinkedIn at https://www.linkedin.com/company/percept-solutions/to stay informed about new opportunities and events.