SOC Analyst
The SOC Analyst (L1/L2) is responsible for continuous monitoring, detection, analysis, and response to cybersecurity threats across enterprise environments. The role supports 24x7 SOC operations, performing real‑time security event monitoring, incident triage, investigation, escalation, and remediation in accordance with established runbooks, SLAs, and client requirements.
Key Responsibilities
Monitor and analyze security alerts from SIEM, SOAR, EDR, and other security tools to identify potential threats.
Perform timely triage, validation, and investigation of alerts in accordance with SLA and prioritization matrix (P1–P4).
Execute approved containment, response, and remediation actions using defined SOC runbooks.
Manage incidents through the full case lifecycle, ensuring accurate documentation, status updates, and closure in the case management system.
Follow standard case handling processes, including case stage/status flow and QA validation requirements.
Monitor SOC communication channels (e.g., mailbox, SOAR) and ensure timely response to inquiries, escalations, and stakeholder coordination.
Escalate high-severity or complex incidents in line with SLAs, including immediate notification for potential P1/P2 cases.
Ensure SLA compliance and resolution, including coordination with internal and external stakeholders.
Perform shift-based operations, including effective handover of active and critical cases with complete context.
Identify and report operational issues, anomalies, or delays within the same shift to relevant leads.
Support continuous improvement by supporting in identifying gaps in detection, logging, automation, and case handling processes.
Technical Skills
Strong understanding of cybersecurity fundamentals, including threat types, attack vectors, the CIA triad, and awareness of frameworks such as MITRE ATT&CK for threat identification.
Working knowledge of operating systems (Windows, Linux/Unix) and networking concepts (TCP/IP, OSI model, DNS, HTTP/S).
Experience or familiarity with SIEM/SOAR platforms, endpoint protection, firewalls, and security monitoring tools.
Ability to analyze logs, network traffic, and endpoint telemetry to identify malicious activity.
Exposure to cloud security concepts (Azure, AWS, or GCP) is an advantage.
Familiarity with the MITRE ATT&CK framework for threat identification is an advantage.
Bachelor’s degree in computer science, Information Security, Information Technology, or a related field.
1–3 years of experience in Security Operations, IT security, or a related role.
Basic understanding of cybersecurity concepts, threats, and attack methodologies.
Hands-on exposure or academic experience with SIEM, SOAR, EDR, or security monitoring tools is an advantage.
Familiarity with incident handling, alert triage, and case management processes.
Strong analytical and problem-solving skills with attention to detail.
Good written and verbal communication skills for documentation and handover reporting.
Relevant certifications – e.g., Security+, SC-200, CEH (Associate level) – are an advantage but not mandatory.
Kuwait City
平等就业机会声明
所有聘用决定均不考虑年龄、种族、信仰、肤色、宗教、性别、国籍、血统、残疾状况、退伍军人身份、性取向、性别认同或表达、基因信息、婚姻状况、公民身份或任何其他受联邦、州或地方法律保护的因素。
求职者在招聘过程中没有义务披露已封存或已删除的定罪或逮捕记录。
埃森哲致力于为我们的男女军人提供退伍军人就业机会。
请阅读埃森哲的招聘和聘用声明,了解更多关于我们在招聘和聘用过程中如何处理您的数据的信息。
We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other.
We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work.
At Accenture, we see well-being holistically, supporting our people’s physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We’re proud to be consistently recognized as one of the World’s Best Workplaces™.
Join Accenture to work at the heart of change. Visit us at www.accenture.com.