Get AI-powered advice on this job and more exclusive features.
Leveraging its long-standing expertise in securing digital content as well as fighting piracy, Kudelski Security, a division of the Kudelski Group, is a provider of cybersecurity solutions and services focused on protecting data, processes and systems for companies and organizations around the world, safeguarding their assets at a time of increasingly remote communications.
Mission
As a Tier 2 SOC Analyst, you will serve as a subject matter expert in our technology stack while optimizing security tools and detection workflows, mentoring junior analysts on complex investigation techniques, and driving continuous improvement initiatives across our multi-client SOC environment.
This role demands advanced analytical skills to conduct in-depth analysis of escalated security incidents from Tier 1 analysts, performing advanced threat investigations to determine attack vectors, assess impact scope, and develop comprehensive remediation strategies.
Responsibilities
General responsibilities
* Recommend improvements for Standard Operating Procedures (SOPs)
* Propose enhancements to tools and workflow
* Respond in a timely manner (within documented SLA) to support tickets.
* Document actions in tickets to effectively communicate information internally and to customers.
* Adhere to policies, procedures, and security best practices.
* Take responsibility for customer satisfaction and the overall success of managed services.
* Be available, ready, and able to accept incoming client calls
* Mentor fellow Security Engineers and Security Analysts.
Service improvement
* Optimize SIEM rules and detection logic to reduce false positives and improve detection accuracy
* Support rules factory program in improving the global set of detection
* Validate Go-to-Active and Go-to-Prod gates of our new clients to ensure a smooth transition to operation
* Continuously improve incident templates in terms of content for the clients and in terms of automation to best support Operations
* Support the rollout of new sets of rules for our clients
* Qualify, analyze, and provide recommendations for new standard data source requests
* Support Product teams to build the best new services to fit with Operations capabilities (needs, scalability, efficiency)
Threat Monitoring
* Manage escalated cases from T1 Analysts
* Analyze and respond to security events from SIEM, EDR, FWs, IDS, IPS, AV and other security data sources.
* Deliver high-quality Incident Handling and investigation
* Conduct threat hunting activities using advanced analytics and threat intelligence
* Provide 24/7 on-call support for critical security incidents outside business hours
Profile
* Minimum 4 years of hands-on experience in cybersecurity operations, incident response, or threat analysis
* Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or equivalent experience
* Proven track record in a SOC and international/global environment
* Dynamic, with strong interpersonal and communication skills
* Autonomous, self-taught and transparent
* Able to handle and prioritize parallel tasks with multiple interfaces
Required Skills
* Advanced proficiency with SIEM platforms (Splunk, QRadar, Sentinel, etc.)
* Extensive experience with EDR/XDR solutions (CrowdStrike, SentinelOne, Microsoft Defender, etc.)
* Deep understanding of network security technologies (firewalls, IDS/IPS, network monitoring)
* Strong knowledge of Windows and Linux/Unix operating systems and forensics
* Experience with cloud security (AWS, Azure, GCP) and containerization technologies
* Familiarity with OT/ICS environments and industrial control systems security
* Proficiency in scripting languages (Python, PowerShell, Bash) for automation
* Understanding of threat intelligence platforms and MITRE ATT&CK framework
Seniority level
* Seniority level
Associate
Employment type
* Employment type
Full-time
Job function
* Job function
Information Technology, Engineering, and Analyst
* Industries
Computer and Network Security and IT Services and IT Consulting
Referrals increase your chances of interviewing at Kudelski Security by 2x
Sign in to set job alerts for “Security Analyst” roles.
Security Engineer (Operations), Lausanne
Business Intelligence and Data Analyst Executive
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr