This role acts as an advanced technical contributor responsible for incident investigation, platform operations, and cross-tower support across TDR, IAM, VM, and SecOps
Job Summary
This role acts as an advanced technical contributor responsible for incident investigation, platform operations, and cross-tower support across TDR, IAM, VM, and SecOps.
The incumbent will perform deeper analysis than L1, handle escalations, optimize detection logic, and drive improvements to ensure operational excellence.
Candidates must demonstrate the ability to navigate complex situations, build meaningful client connections, and deliver quality solutions in an environment of increased ambiguity.
Matching Summary
This role acts as an advanced technical contributor responsible for incident investigation, platform operations, and cross-tower support across TDR, IAM, VM, and SecOps.
Skills & Requirements
Must-have
3-6 years SOC or SecOps experience
SIEM and EDR platform proficiency
Vulnerability management and IAM operations
Detection logic and correlation rule creation
Network security and OS security knowledge
Nice-to-have
Scripting skills in Python or PowerShell
Cloud platform knowledge Azure AWS GCP
Understanding of MITRE ATT&CK framework
Strong communication and documentation skills
Experience with SOAR automation tools
Key Requirements
Bachelor's degree in Cybersecurity or related field
3-6 years relevant experience in SOC, VM, IAM, or SecOps
Security certifications such as Security+, CEH, AZ-900, or ITIL