About the Role
We are looking for a motivated and detail-oriented SOC Analyst Intern to join our Security Operations Centre team. This is a hands-on internship where you will be embedded in a live SOC environment, supporting real-time security monitoring and incident triage under the guidance of senior analysts.
Key Responsibilities
- Monitor security events and alerts across SIEM platforms (e.g. Splunk, Microsoft Sentinel, Elastic SIEM) on a rotational shift basis
- Perform first-level triage of security alerts - classify, prioritise, and escalate to L2/L3 analysts as required
- Investigate potential security incidents including phishing attempts, malware detections, unauthorised access, and anomalous network behaviour
- Document incident details, triage steps, and findings accurately in the ticketing system (e.g. ServiceNow, Jira)
- Assist in creating and tuning detection rules and alert thresholds to reduce false positives
- Support threat intelligence correlation by cross-referencing IOCs against internal logs and external threat feeds
- Participate in shift handover briefings and contribute to daily security status reports
- Assist in maintaining SOC runbooks and standard operating procedures
Requirements
- Currently pursuing a Diploma or Degree in Cybersecurity, Information Technology, Computer Science, or a related field
