SOC Analyst L3 Consultant

About the role

We are looking for a senior SOC Analyst (Level 3) to serve as the primary onsite resource for our Security Operations Center. You will coordinate with local and offshore teams, act as the liaison with external stakeholders, and ensure smooth security monitoring and incident response.

Key responsibilities

• Manage and coordinate the SOC team on‑site and with offshore vendors.
• Oversee log source onboarding and integration into Azure Sentinel SIEM.
• Guide SIEM engineers on configuration and data ingestion.
• Review IR reports, lead incident response from detection through remediation, and maintain detailed case documentation.
• Analyze and fine‑tune security rules to reduce false positives and improve detection.
• Generate daily and weekly dashboards and reports on security operations.
• Continuously update monitoring processes and share lessons learned.

Required profile

• Minimum 8 years of experience in information security, focusing on SOC operations and SIEM management.
• Proven experience with Azure Sentinel and Azure Network Security.
• Strong knowledge of the OSI model, network ports, services, and protocols.
• Experience analyzing Windows and Unix log formats.
• In‑depth understanding of IP networking, routers, and switches.
• Excellent analytical and root‑cause analysis skills.
• Professional work ethics and ability to handle sensitive information.

Required skills

• Azure Sentinel
• Azure Network Security
• SIEM platforms
• Windows log analysis
• Unix log analysis
• IP networking
• Routers and switches
• OSI model
• Network ports and protocols