Security Operations Center Analyst

Consultant

What you will be working on
As a Digital Project Manager, being part of the Digital Business Partner team, you will be responsible for: • Overseeing and managing the successful planning, execution, and completion of digital projects. • Identify and propose optimal digital solutions in alignment with project objectives. • Working closely with cross functional teams to deliver projects on time within scope and on budget. • Acting as a bridge between technical and non-technical stakeholders, ensuring clear communication and alignment throughout the project lifecycle. • Ensure compliance with regulatory, global, or local policies relevant to digital projects. • Maintain clear and effective communication with clients throughout projects, ensuring their needs are understood and addressed. • Take ownership of project delivery within established frameworks, driving success and continuous improvement.
Key Responsibilities:
Lead the planning, execution, and delivery of digital projects. Define project scope, objectives, and deliverables in collaboration with stakeholders. Manage project budgets, timelines, and resources, adjusting as necessary. Facilitate collaboration between teams to ensure alignment and timely delivery. Maintain effective communication with stakeholders, providing regular updates and reports.
Oversee risk management, compliance, and ensure regulatory adherence. Foster a positive, results-driven work environment and encourage continuous improvement.
What we look for
Key Skills and Qualifications:
Bachelor’s or Master’s degree in IT, Business, or related field. Proven experience managing complex IT projects with tangible business impact. Strong client management and relationship-building skills. Ability to work cross-functionally in multicultural environments. Excellent organizational, analytical, and problem-solving skills. Fluent in English (French or German is a plus). Proficiency in MS Office (Excel, PowerPoint, Word).
Competencies:
Strategic thinking and problem-solving abilities. Excellent leadership, team collaboration, and communication skills. Ability to adapt to evolving project needs and prioritize tasks. Strong commitment to delivering high-quality results. This role is ideal for a self-motivated individual with a track record of successfully leading digital projects, fostering teamwork, and managing stakeholder relationships in fast-paced environments.
What you will get
We offer more than just a job. With our flexible work model, you can work, rest and recharge. Our competitive compensation packages, paid time off, recognition bonuses and dedicated programs for personal development and well-being help to keep you refreshed and motivated.
We will accompany you on a journey of professional growth, offering an expansive spectrum of prospects to elevate your career in Luxembourg, an emerging financial center. Feel a sense of belonging by enjoying year-round celebrations and engaging events that bring us all together.

The Security Operations Center (SOC) Analyst is primarily responsible for monitoring and responding to alerts generated by the SIEM. The role requires experience in a SOC environment, incident response process and the ability to analyze threats, risks, and impact. The SOC Analyst will be a member of the Digital Security Group and work under the supervision of the SOC Manager, Digital Security. This is a shift position, on rotation to provide 24x7x365 coverage.

Responsibilities   The Security Operations Center (SOC) Analyst will be responsible for monitoring, analyzing, triaging, and remediating alerts generated by the monitoring tools. Escalating alerts to the SOC Manager, IR and remediation teams as deemed necessary from the analysis. The activity of monitoring includes daily review of the product consoles, analyzing the events, and determining which events are actionable. Responsibilities include but not limited to:

· Conduct real-time, continuous 'eyes-on-glass' monitoring of security events, responses, and reporting.

· Acknowledge tickets in ITSM according to defined service level agreements.

· Perform security event triage and validate potential threats following standard processes and procedures.

· Analyze, contextualize, and monitor security alerts from various advanced security platforms.

· Utilize internal and external data sources to research and enrich event information, determining if an event warrants classification as an "incident."

· Validate IOCs, investigate intrusion attempts, and conduct in-depth analysis and correlation of host-based logs, network traffic, and other data sources.

· Conduct continuous monitoring of event logs, evaluating, analyzing, and correlating triggers based on established Threat Use Cases.

· Diagnose events using identification playbooks to discern false positives or duplicates.

· Execute daily tasks including ticket review, investigate security events effectively, communicate findings, and escalate concerns to senior staff and/or SOC Manager as needed, per the established playbooks and SOPs (Standard Operating Procedures).

· Identify and prioritize incidents based on organizational impact or threat severity.

 

Position is part of a 24x7x365 shift rotation which will require after-hours and weekend work, may also require on-call as needed to support KPMG business needs.

What you bring to the role

· 3-year college degree or higher

· 2+ years of experience in a SOC environment in the areas of: incident detection and response, remediation,

malware analysis, or Incident Response / forensics

· Hands-on experience with Microsoft Sentinel or other SIEM and EDR/XDR technologies, creating and running

queries, and performing analytics, examination of logs and console events.

· Exposure to Microsoft Defender Endpoint, CSPM/CWP, or similar technologies

· Experience in Web Application Firewalls and API security

· Knowledge or experience in cloud security (Azure)

· Good understanding of SANS and MITRE ATT&CK Frameworks.

· Any industry relevant(s) certifications such as CISSP, CISM, SANS, CISA, CompTIA Security+ or CompTIA

CySA+, GIAC is an asset.

· Strong understanding of business processes and ability to manage change/adhere to change management

processes.

· Great communication skills

Nice to Have:

· Knowledge or experience in cloud security (GCP or AWS)

· Experience in malware analysis and reverse engineering

The Security Operations Center (SOC) Analyst is primarily responsible for monitoring and responding to alerts generated by the SIEM. The role requires experience in a SOC environment, incident response process and the ability to analyze threats, risks, and impact. The SOC Analyst will be a member of the Digital Security Group and work under the supervision of the SOC Manager, Digital Security. This is a shift position, on rotation to provide 24x7x365 coverage.

Responsibilities   The Security Operations Center (SOC) Analyst will be responsible for monitoring, analyzing, triaging, and remediating alerts generated by the monitoring tools. Escalating alerts to the SOC Manager, IR and remediation teams as deemed necessary from the analysis. The activity of monitoring includes daily review of the product consoles, analyzing the events, and determining which events are actionable. Responsibilities include but not limited to:

· Conduct real-time, continuous 'eyes-on-glass' monitoring of security events, responses, and reporting.

· Acknowledge tickets in ITSM according to defined service level agreements.

· Perform security event triage and validate potential threats following standard processes and procedures.

· Analyze, contextualize, and monitor security alerts from various advanced security platforms.

· Utilize internal and external data sources to research and enrich event information, determining if an event warrants classification as an "incident."

· Validate IOCs, investigate intrusion attempts, and conduct in-depth analysis and correlation of host-based logs, network traffic, and other data sources.

· Conduct continuous monitoring of event logs, evaluating, analyzing, and correlating triggers based on established Threat Use Cases.

· Diagnose events using identification playbooks to discern false positives or duplicates.

· Execute daily tasks including ticket review, investigate security events effectively, communicate findings, and escalate concerns to senior staff and/or SOC Manager as needed, per the established playbooks and SOPs (Standard Operating Procedures).

· Identify and prioritize incidents based on organizational impact or threat severity.

 

Position is part of a 24x7x365 shift rotation which will require after-hours and weekend work, may also require on-call as needed to support KPMG business needs.

What you bring to the role

· 3-year college degree or higher

· 2+ years of experience in a SOC environment in the areas of: incident detection and response, remediation,

malware analysis, or Incident Response / forensics

· Hands-on experience with Microsoft Sentinel or other SIEM and EDR/XDR technologies, creating and running

queries, and performing analytics, examination of logs and console events.

· Exposure to Microsoft Defender Endpoint, CSPM/CWP, or similar technologies

· Experience in Web Application Firewalls and API security

· Knowledge or experience in cloud security (Azure)

· Good understanding of SANS and MITRE ATT&CK Frameworks.

· Any industry relevant(s) certifications such as CISSP, CISM, SANS, CISA, CompTIA Security+ or CompTIA

CySA+, GIAC is an asset.

· Strong understanding of business processes and ability to manage change/adhere to change management

processes.

· Great communication skills

Nice to Have:

· Knowledge or experience in cloud security (GCP or AWS)

· Experience in malware analysis and reverse engineering

Experience Level

Mid Level