Overview of the Role:
DUG is seeking a skilled SOC Analyst with approximately 5 years of experience to strengthen our Security Operations Center. As we primarily operate in a Linux-based environment, a strong foundation in Linux security is essential.
List of Responsibilities (not necessarily exhaustive):
SOC Monitoring & Incident Response
Monitor SIEM alerts, suspicious activity, anomalies, network & endpoint data.
Perform incident triage, investigation, and remediation.
Conduct proactive threat hunting.
Vulnerability Management & Patching
Execute patching and vulnerability scanning processes using tools like OpenVAS or Nessus (preferred).
Perform regular security audits of systems, networks, and configurations.
Security Engineering / Systems Hardening
Secure and maintain Linux-based environments.
Manage and fine-tune DUG’s SIEM platforms (Wazuh).
Configure and operate firewalls, IDS/IPS, and endpoint protection solutions.
Compliance & Best Practices
Support security processes in alignment with frameworks such as ISO 27001 and NIST.
Document incidents, root causes, and lessons learned for continuous improvement.
Business Continuity & Operations
Contribute to disaster recovery and incident response exercises.
Assist with vendor / third-party security risk assessments as required.
Job Requirements
Minimum 5 years’ experience in SOC operations, incident response, or cybersecurity roles.
Strong hands-on experience securing Linux-based systems and environments
Proficiency in SIEM operation and log analysis.
Experience in vulnerability scanning and patch management.
Familiarity with IDS/IPS, firewalls, and endpoint protection tools.
Knowledge of security frameworks (ISO 27001, NIST).
Strong analytical, troubleshooting, and communication skills.
The following experience is desirable, but not mandatory:
Experience with CI/CD pipelines, Terraform, DevSecOps, and Kubernetes
Familiarity with Palo Alto or other Next-Generation Firewalls (NGFWs)