Job Opening for SOC Analyst Intern (Job Code RT 1572)

• Monitor security events and alerts from SIEM tools like Azure Sentinel and other security tools.
• Perform initial triage of security alerts (L1 analysis) to identify false positives vs genuine incidents.
• Support investigation of security incidents by collecting and analysing log data from:
  • Endpoints, servers, firewalls, and network devices
  • Cloud resources (primarily Microsoft Azure)
• Use basic KQL (Kusto Query Language) queries in Microsoft Sentinel to search, filter, and analyse security logs.
• Escalate potential security incidents to senior SOC analysts as per defined incident response procedures.
• Document findings, investigation steps, and resolutions in SOC tickets / incident tracking systems.
• Assist in maintaining and improving SOC playbooks, runbooks, and standard operating procedures (SOPs).
• Stay updated with the latest cybersecurity threats, vulnerabilities, and attack techniques.

Skills & Knowledge Required

• Bachelor’s degree (ongoing or completed) in Computer Science, Information Technology, Cybersecurity, Electronics, or related field.
• CEH (Certified Ethical Hacker) from EC-Council
• Good understanding of understanding of OWASP Top 10, MITRE ATT&CK framework, Networking Basics, Cybersecurity Fundamentals, SIEM tools, XDR, Understanding of incident lifecycle
• Preferred Skills-Basic scripting or programming knowledge (PowerShell, Python, or Bash)
• Good verbal and written communication skills.