Responsibility
- Perform L2 triage and investigation of security alerts across SIEM, EDR/XDR, email, identity, network, and cloud platforms
- Correlate events to identify root cause, scope, and impact of security incidents
- Investigate phishing, malware, account compromise, and unauthorised access cases
- Conduct proactive threat hunting using threat intelligence and MITRE ATT&CK framework
- Support containment, remediation, and recovery activities during incidents
- Document investigation findings and prepare incident reports for stakeholders
- Escalate complex or high severity incidents to L3 or relevant teams with clear handover notes
- Monitor security dashboards and respond to alerts within defined SLAs
- Assist in vulnerability assessment and coordinate patching with relevant teams
- Contribute to SOC improvements (playbooks, detection tuning, onboarding of new tools)
- Stay updated on emerging threats, attack techniques, and security trends
- Work closely with IT, infrastructure, and other teams during incident response
Qualification
- Degree or Diploma in Cybersecurity, IT, or related field
- At least 4 years of experience in SOC operations or incident response (L2 preferred)
- Experience with SIEM, EDR/XDR, and cloud or identity security tools
- Strong understanding of attack chains, MITRE ATT&CK, and threat analysis
- Demonstrated hands on experience in incident investigation or threat hunting
- Familiar with common cloud platforms such as AWS, Azure, or GCP
- Good knowledge of networking concepts and protocols (TCP/IP, DNS, HTTP, etc)
- Strong analytical and problem solving skills
- Good communication skills to work with cross functional teams
- Relevant certifications such as CompTIA Security+, CEH, or GCIH are a plus
- Ability to operate independently in a SOC environment
Beyondsoft is committed to being an equal opportunity employer and provides equal employment opportunities to all employees and applicants. We strive to cultivate a workplace that celebrates diversity and inclusion, where individuals of all backgrounds—regardless of nationality, ethnicity, religion, age, gender identity, sexual orientation, or any other distinguishing trait—can succeed and thrive. We prohibit discrimination and harassment of any type with regard to race, color, religion, age, national origin, disability status, genetics, sexual orientation, gender identity, or expression. This policy applies to all terms and conditions of employment, including recruiting, hiring, and the entire employee lifecycle. We are focused on creating an environment where everyone can reach their full potentetl
Employment offers from Beyondsoft are contingent upon the successful completion of any required pre-employment processes, in line with applicable laws and regulations. Beyondsoft does not ask for any recruitment fees, nor does it request any unauthorized payments from candidates as part of the hiring process.
