Tier 2 Cybersecurity Analyst

About the role

The SOC Tier 2 Cybersecurity Analyst is responsible for deep‑dive investigations of security incidents escalated from Tier 1, leading response actions, and enhancing the overall security posture of our customers. This mid‑level position blends incident response, threat hunting, and digital forensics.

Key responsibilities

• Investigate and analyze security incidents using logs, network traffic, and other data sources.
• Lead containment, eradication, and recovery efforts for confirmed incidents.
• Perform root‑cause analysis and document comprehensive incident reports.
• Proactively hunt for advanced threats and develop detection methodologies.
• Conduct digital forensic investigations on compromised systems.
• Collaborate with IT and security teams to improve controls, policies, and procedures.
• Mentor Tier 1 analysts and contribute to SOC training initiatives.

Required profile

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• 2‑5 years of experience in cybersecurity, incident response, or digital forensics.
• Relevant certifications such as CEH or CIH are a plus.

Required skills

• Hands‑on experience with SIEM, IDS/IPS, firewalls, EDR, and forensic tools.
• Strong knowledge of Windows, Linux, and cloud environments.
• Scripting and automation using Python, PowerShell, and Bash.