SOC Analyst L2

Key Responsibilities

• Perform in-depth investigation and correlation of security alerts
• Conduct threat hunting and root cause analysis across endpoint, network, and identity logs
• Lead incident response and containment actions for confirmed incidents
• Develop and optimize Sentinel analytics rules, KQL queries, and SOAR playbooks
• Provide technical guidance to L1 analysts and handle escalations
• Prepare incident reports and recommend security improvements

Required Skills & Experience

• 3–6 years of experience in SOC operations or incident response
• Strong expertise in Microsoft Sentinel, KQL, and log correlation
• Knowledge of MITRE ATT&CK, threat hunting, and digital forensics concepts