SOC Engineering

About This Role

SOC Engineering role requiring experience with SIEM platforms like Microsoft Sentinel and Splunk, along with threat modeling skills and SOAR automation. Candidates must possess a cybersecurity background to design detection use cases, optimize pipelines, and support incident response effectively.

Responsibilities

• Design and maintain SOC platforms including SIEM, SOAR, and monitoring tools.
• Build log ingestion pipelines to ensure data quality and efficiency.
• Develop detection use cases aligned with threat intelligence and MITRE ATT&CK methodologies.
• Conduct threat modeling for applications, cloud environments, and infrastructure to identify risks.
• Translate threat scenarios into detection logic, telemetry requirements, and automated response workflows.
• Design SOAR playbooks for alert triage, incident response, and escalation.

Requirements

• Bachelor's degree in Cybersecurity, Information Technology, or Computer Science.
• Hands-on experience with SIEM platforms such as Microsoft Sentinel and Splunk.
• Strong knowledge of detection engineering and log analysis across cloud, endpoint, and network environments.
• Experience with threat modeling frameworks (e.g., STRIDE, MITRE ATT&CK) and security operations workflows.
• Familiarity with SOAR tools and automation scripting (e.g., Python, PowerShell).
• Understanding of cloud security and modern enterprise architectures.
• Strong problem-solving, analytical, and communication skills.