Job Overview:
As a SOC Analyst L3, you will play a pivotal role in the Security Operations Center (SOC), handling advanced security incidents, conducting in-depth investigations, and leading proactive threat hunting efforts. You will work closely with L2 analysts to provide guidance and assist with escalated incidents while coordinating with other teams to manage security threats across the organization. This position is ideal for experienced security professionals ready to tackle complex security challenges and advance their skills in incident response and security management.
Responsibilities:
Advanced Incident Analysis: Investigate escalated security incidents using logs, network traffic, and other forensic data to determine the root cause, impact, and remediation strategies.
Threat Hunting: Proactively search for potential threats within the network that may not have triggered alerts, using data from SIEM, IDS/IPS, and other tools.
Incident Response Leadership: Lead the response to security incidents, collaborating with cross-functional teams to contain, remediate, and recover from security breaches.
Root Cause Analysis: Identify the underlying causes of incidents and work with teams to prevent future occurrences by improving security processes and tools.
Security Tool Optimization: Configure and fine-tune security tools such as SIEM, IDS/IPS, and EDR for better detection and response capabilities.
Mentoring L1 Analysts: Provide guidance and training to L1 & L2 SOC Analysts, helping them develop their skills in incident triage, investigation, and response.
Reporting and Documentation: Generate detailed incident reports, documenting investigation steps, findings, and lessons learned for continuous improvement.
Vulnerability Management: Collaborate with security and IT teams to identify, prioritize, and remediate vulnerabilities across networks and systems.
Collaboration: Work with IT, development, and other departments to enhance the overall security posture and ensure compliance with internal policies and external regulations.
Qualifications:
Bachelor's or Master’s degree in IT, Computer Science, Software Engineering or in Cyber Security.
4-6 years of experience in IT Security.
Understanding of Cloud-based IT infrastructure.
Good reporting, documentation and presentation skills.
Strong Knowledge of Incident Management Processes.
Hands-on experience with tools like MS Azure Cloud Defender, Manage Engine, or Cloudflare.
Strong Knowledge of SIEM solutions, EDR, or XDR.
SOC-200 (OffSec) or GIAC Security Operations (SOC) or The Certified SOC Analyst.
Compensation and Benefits:
💰 Financial:
Competitive salary and bi-annual bonus.
Fast track and uncapped career growth for high performers.
Company-sponsored vehicle financing (car and bike).
Interest-free loans.
Provident Fund: CureMD matches up to 8% of your base salary.
🏥 Health and Wellness:
In-house clinic with a team of certified male and female doctors with 24/7 telemedicine service.
Hospital treatment monitoring by company doctors.
Comprehensive health coverage for your immediate family (outpatient, inpatient, maternity and parents' inpatient).
Exclusive health benefits and discounts at top class clinics and labs.
🤝🏻 Supportive Workplace:
Pick-up and drop-off services for female employees.
In-house daycare facility.
In-house gym and recreational area to unwind.
📚 Continued Learning:
Company-sponsored trainings, workshops, development programs and retreats.
Paid specialized trainings/certifications.
The Difference You’ll Make:
At CureMD, every role, whether senior or junior, plays a pivotal part in transforming healthcare. By joining our innovative team, you’ll contribute to groundbreaking technology that directly impacts patient care, enhances healthcare efficiency, and saves lives globally. Your skills and passion will drive meaningful change, helping us deliver solutions that support healthcare professionals in critical, real-time settings. Together, we’re not just advancing technology — we’re making a tangible difference in people’s lives. Together, let’s save lives.
