Security Engineer

Job Description

We are seeking a proactive SOC Analyst / Security Engineer with 1+ years of experience in EDR, SIEM monitoring, and incident analysis. The role involves monitoring alerts, validating threats, performing basic remediation, and improving detection capabilities using frameworks like MITRE ATTACK.

Key Responsibilities

·  Monitor, analyze, and triage alerts from various security sources.

·  Investigate suspicious processes, file executions, and malware behavior on endpoints.

·   Escalate high severity incidents and complex cases to the senior team.

·   Perform endpoint isolation and basic remediation actions when required.

·   Conduct basic IOC based threat hunting activities.

·  Hands on experience with EDR and SIEM (Wazuh, Qradar and Other).

·  Identify suspicious network traffic patterns, IPS alerts, and failed login attempts.

·  Document and maintain basic incident response playbooks for common alert types.

·  Basic understanding of SOAR tools or assist in basic playbook automation (added advantage).

·  Understanding of common vulnerabilities, exploits, and attacker methodologies.

·  Understanding of Windows/Linux event logs and general security logs.

·  Understanding of core networking concepts such as TCP/IP, DNS, HTTP/S.

·  Basic scripting knowledge in PowerShell, Python, or Bash (added advantage).

Qualifications & Requirements

·  Experience: 1+ year in cybersecurity or security operations.

·  Education: Bachelor’s degree in computer science, Cybersecurity, or a related technical field.

·  Strong analytical and problem-solving skills.

·  Good communication, reporting, and documentation skills.