SOC L2 Analyst

Role Overview
The SOC L2 Analyst is responsible for advanced monitoring, investigation and response to cybersecurity incidents.

This role serves as the escalation point for L1 analysts and performs in-depth analysis to ensure timely containment and remediation of threats.

Key Responsibilities

• Monitor and investigate security alerts escalated from L1 analysts
• Perform detailed analysis using SIEM, EDR and related tools
• Lead incident response activities, including containment and recovery
• Conduct threat hunting based on intelligence and observed patterns
• Analyze malware, phishing attempts, and suspicious behaviour
• Correlate events across multiple sources to identify threats
• Document incidents and response actions clearly
• Provide guidance and mentoring to L1 analysts
• Fine-tune detection rules to improve alert quality
• Work closely with internal teams for incident resolution

Technical Skills & Requirements

• Experience with SIEM tools (e.g. Splunk, netwitness, Sentinel)
• Familiarity with EDR platforms (e.g. Carbonblack)
• Strong understanding of network protocols and log analysis
• Knowledge of MITRE ATT&CK framework
• Experience in incident response processes
• Basic scripting (Python, PowerShell, or Bash) is preferred
• Understanding of security controls such as firewalls, IDS/IPS, and VPNs

Experience & Qualifications

• 3–5 years of SOC or cybersecurity operations experience
• Relevant qualification in Cybersecurity, IT, or equivalent
• Certifications such as CEH, CySA+, GCIH, or Security+ are advantageous

Soft Skills

• Strong analytical and problem-solving skills
• Ability to work in a fast-paced SOC environment
• Good communication and documentation capability
• Team player with mentoring ability

KPIs

• Incident response and resolution time
• Accuracy of analysis and escalation
• Reduction in false positives
• Quality of documentation

Interested candidate please click "APPLY" to begin your job search journey.

We regret to inform that only shortlisted candidates will be notified.

By sending us your personal data and curriculum vitae (CV), you are deemed to consent to EVO Outsourcing Solutions Pte Ltd and its affiliates to collect, use and disclose your personal data for the purposes set out in the Privacy Policy available athttps://www.evo-sg.com/privacy-policy/ You acknowledge that you have read, understood, and agree with the Privacy Policy.

EVO Outsourcing Solutions Pte. Ltd
• RCB No. 202233837K