Senior Security Operation Center (SOC) Analyst – L2
Role Overview
We are seeking a Senior SOC Analyst, within the Cyber Incident Response team, to serve as an L2 professional responsible for protecting computer systems, networks, and sensitive data from cyber-attacks, hacking attempts, and other security threats. This role involves analyzing and responding to cybersecurity events, collaborating with other security and IT teams, and contributing to ongoing projects and initiatives.
Responsibilities
- Monitor and analyze network traffic, system logs, and alerts to detect cybersecurity incidents.
- Investigate and respond to cybersecurity incidents in real-time, including handling more complex and high-severity cases.
- Work with a team of analysts to determine the scope, root cause, attack techniques, and impact of attacks.
- Perform detailed analysis across endpoint, network, identity, and cloud data sources, including log analysis, process activity, and authentication events.
- Support basic forensic investigations, including evidence collection, timeline reconstruction, and analysis of suspicious files or activities.
- Develop, implement, and maintain incident response plans, playbooks, and SOPs to contain and mitigate cybersecurity incidents.
- Develop and enhance incident detections and triggers, aligned with the evolving threat landscape and leveraging available technology (e.g., SIEM correlation, EDR detections).
- Operate with various systems in real-time to investigate, maintain, and track incidents across their lifecycle.
- Perform deeper analysis and correlation across multiple data sources to identify threats and potential lateral movement.
- Collaborate with other teams, including IT, security risk, forensics, and legal, to ensure a coordinated response to incidents.
- Communicate security incidents, findings, and recommendations to management, stakeholders, and relevant parties.
- Participate and provide value in projects and initiatives with implications on Incident Response services.
- Support and guide junior analysts during investigations, including reviewing analysis, suggesting approaches, and providing hands-on assistance when required.
- Contribute to team knowledge development through documentation, training sessions, and sharing investigation techniques and lessons learned.
- Stay up to date with the latest security threats, vulnerabilities, and attack techniques to proactively identify and mitigate potential risks.
- Manage and coordinate Cyber Security initiatives in the region, where required.
- Support projects from a Cyber Security perspective and ensure liaison with other Group Security departments.
Qualifications
- Strong knowledge of networking, systems, identity, and cloud environments, including investigation and troubleshooting.
- Strong understanding of cybersecurity principles, including threat intelligence, incident response, forensics, vulnerability management, and cyber awareness.
- Practical experience in log analysis, endpoint investigation, and understanding attacker techniques (e.g., lateral movement, persistence, privilege escalation).
- Experience with security tools such as SOAR, SIEM, IDS/IPS, EDR, mail gateway, and other relevant technologies.
- Ability to handle complex incidents in a fast-paced environment and manage multiple tasks simultaneously.
- Strong analytical and problem-solving skills, with attention to detail.
- Good interpersonal skills, with the ability to work collaboratively with cross-functional teams.
- Strong communication skills and ability to effectively communicate technical information to both technical and non-technical stakeholders.
- Experience supporting or guiding less experienced analysts is an advantage.
- Excellent proficiency in English. Fluency in additional languages is a strong asset.
Preferred Qualifications
- Industry-recognized security certifications, including but not limited to: CISSP, CEH, CISA, GSEC, GCIA, GCIH, GCFA, GCFE, GPEN, GWAPT, GMOB, GREM, GASF, GCTI or equivalent certifications, are a strong asset.
Benefits
Richemont offers a comprehensive benefits program to support employees and their loved ones, including medical, dental, and vision programs, health savings and flexible spending accounts, income protection solutions, and paid time off. Employees are also encouraged to make a difference in their local communities with volunteer days off, and access to the employee assistance program.
Pay
The expected salary range for this position is $135,000 – 140,000, with the actual salary determined based on relevant skills and experience.