Level 1 SOC Analyst
SecurityHQ
Description
Job Description
As our Level 1 SOC Analyst, you will be the first line of defence in our 24/7 Security Operations Centre. You will monitor security alerts, investigate potential threats, and escalate critical incidents to L2 teams. This role is ideal for early‑career cybersecurity professionals who have foundational knowledge and are eager to grow their skills in a dynamic SOC environment.
You will work on a rotating shift schedule (7 AM–3 PM, 3 PM–11 PM, 11 PM–7 AM), including weekends and holidays, with two days off per week.
Responsibilitie
- sMonitor security alerts across SIEM, EDR, IDS/IPS, firewalls, and other security platform
- sPerform initial triage to determine false positives vs. actionable incident
- sAnalyse logs, events, and indicators of compromise (IOCs)Follow SOC runbooks and SOPs for alert handling and escalatio
- nCreate and update incident tickets with accurate details and timeline
- sEscalate suspicious activity or confirmed incidents to SOC L2 analyst
- sConduct basic threat intelligence lookups (IP/URL/hash reputation
- )Support shift handovers and ensure smooth operational continuit
- yAchieve SOC KPIs including TTT, TTQ, and SLA adherenc
**e
About S**
HQSecurityHQ is a global cybersecurity company. Our specialist teams design, engineer and manage solutions that do three things: Promote clarity and trust in a complex world. Build momentum around improving security posture. And increase the value of cybersecurity investment within organizations. Free from limitations, and inclusive of all requirements, we focus on defending today, while mitigating the risks of tomorrow. And into the future. Our solutions are tailored to our customers and their unique context. Around the clock, 365 days per year, our customers are never alone. SecurityHQ – We’re focused on engineering cybersecurity, by desig
**n.
Essential Ski**
- llsBasic understanding of cybersecurity concepts (malware, phishing, DDoS, brute force, et
- c.)Working knowledge of Windows and Linux OS fundament
- alsFamiliarity with TCP/IP, DNS, HTTP/S, and basic network troubleshoot
- ingExposure to SIEM tools (QRadar, Sentinel, et
- c.)Understanding of EDR/AV tools (Microsoft Defender, Trend Micro, SentinelOne, et
- c.)Ability to follow detailed procedures and work in a 24×7 environm
- entBachelor’s degree in IT, Computer Science, or equivalent experie
- nce0–2 years’ experience in SOC or IT security operati
- onsRelevant certifications preferred: Security+, CEH (foundation), SC‑200 (nice to ha
ve)