SOC Analyst – Tier 2 / Tier 3

Shift Pattern:

• 3 days work / 4 days off, then 4 days work / 3 days off
• Day Shift: 8:00 AM – 8:00 PM (Office-based)
• Night Shift: 8:00 PM – 8:00 AM (Work From Home)

We are seeking an experienced SOC Analyst (Tier 2 / Tier 3) to join our Managed Security Services team. This role focuses on advanced incident investigation, threat hunting, and detection engineering, while engaging directly with customers during security incidents. The successful candidate will play a key role in leading high-severity incident response, improving SOC detection capabilities, and mentoring junior analysts. This position requires strong technical depth, analytical thinking, and the ability to operate effectively in a 24×7 SOC environment.

Key Responsibilities:

• Lead investigations of high-severity security incidents, including root cause analysis and containment
• Perform detailed incident analysis and recommend containment, eradication, and recovery actions
• Conduct proactive threat hunting aligned with MITRE ATT&CK
• Develop, fine-tune, and validate SIEM detection use cases, dashboards, and automation playbooks
• Work with SOAR, EDR, and XDR platforms to enhance detection and response
• Engage directly with customers during incident response and regular security reviews
• Produce clear, concise incident reports with technical findings and actionable recommendations
• Provide technical guidance and mentorship to Tier 1 SOC analysts
• Collaborate with consulting, engineering, and threat intelligence teams to improve SOC services
• Support compliance and regulatory reporting (e.g. MAS TRM, PCI DSS, ISO 27001)
• Maintain and enhance SOC playbooks, runbooks, and knowledge base
• Participate in red team / blue team exercises and cross-training initiatives
• Stay current with emerging threats, attack techniques, and security technologies

Qualifications & Experience:

• 3–5 years of experience in SOC operations, incident response, or threat hunting
• Strong hands-on experience with SIEM platforms such as:
• Splunk, Microsoft Sentinel, Cortex XSIAM
• Practical knowledge of SOAR and EDR/XDR technologies
• Experience with cloud security monitoring (AWS, Azure, GCP)
• Understanding of malware analysis, phishing attacks, and insider threat scenarios
• Familiarity with security frameworks: MITRE ATT&CK, MITRE D3FEND, NIST CSF

Preferred Certifications:

• GIAC certifications (GCIA, GCIH, GCFA, GREM)
• CISSP
• Vendor certifications (Palo Alto, CrowdStrike, Microsoft, Fortinet)

Skills & Attributes:

• Strong analytical and problem-solving skills
• Ability to work under pressure during active security incidents
• Excellent customer communication and incident reporting skills
• Comfortable working in a 24×7 shift-based SOC environment
• Team-oriented, adaptable, and eager to learn in a fast-paced environment

To apply,simply click the "Apply" button or send your updated profile to [email protected] 

EA Licence No.:18S9405 / EA Reg. No.:R1330864

PerceptSolutions is expanding and actively seeking talented individuals. We encourageapplicants to follow Percept Solutions on LinkedIn at https://www.linkedin.com/company/percept-solutions/to stay informed about new opportunities and events.