SIEM Engineer (Cortex XSOAR experience required)

Job Summary

The SOC Level 2 Analyst is responsible for conducting in-depth investigations, root‑cause analysis, and responding to complex security incidents escalated by Intrusion Analysts. This role includes validating and analyzing security logs, providing expert guidance and mentorship, and collaborating closely with IT, security teams, and Content Engineers to improve and fine‑tune detection use‑cases.

Key Responsibilities

• Continuously monitor and analyze security alerts and events from SIEM, IDS/IPS, firewalls, and endpoint protection platforms, providing 9x5 support with on‑call availability as needed.
• Perform deep‑dive investigations of escalated incidents, determining root cause, impact, and appropriate response. Own the end‑to‑end resolution process and escalate to Level 3 analysts when required.
• For validated high or critical incidents, initiate the Major Incident Management process, engage CSIRT and/or external inci...