Soc Analyst L1
CurrentAs a SOC L1 Analyst, I am responsible for overseeing, triaging, and analyzing security alerts from over 20 customers utilizing IBM’s QRadar SIEM. My role involves creating comprehensive and detailed reports on Swordfish’s SOCStreams module for each case, leveraging tools such as the OSINT framework, Digital Shadows, CrowdStrike Falcon, Windows Defender ATP, and Carbon Black EDRs.Key responsibilities include:⁍ Monitoring and investigating security events and incidents to identify potential threats and vulnerabilities.⁍ Conducting in-depth analysis and correlating security events to provide actionable insights and recommendations.⁍ Generating custom use case reports tailored to individual customer needs, ensuring precise and effective incident documentation.⁍ Handling shift reports and facilitating seamless handover procedures to maintain continuity and efficiency within the SOC.⁍ Actively participating in the company's workshops, contributing to L1 and L2 meetings, and engaging in continuous skills training on various third-party platforms to stay current with evolving cyber threats and defense strategies.By maintaining a vigilant and proactive approach to security monitoring and incident response, I help safeguard our clients' critical assets and data, contributing to the overall security posture and resilience of their organizations.