Managed Security Services L2

Job Summary

The SOC Analyst – Level 2 (MSS L2) is responsible for advanced security incident investigation, analysis, and response within a Managed Security Services (MSS) environment. The role acts as a technical escalation point for MSS L1 analysts and supports proactive detection, threat hunting, and continuous SOC improvement across multiple clients.

Key Responsibilities

• Investigate and analyze escalated security incidents from MSS L1.
• Perform deep log analysis across SIEM, endpoint, and network security tools.
• Respond to, contain, and remediate security incidents based on severity.
• Conduct phishing and malware analysis and recommend mitigation actions.
• Support threat hunting and proactive detection activities.
• Create, tune, and improve SIEM correlation rules and detection use cases.
• Provide technical guidance and mentoring to MSS L1 analysts.
• Prepare detailed incident reports and root cause analysis (RCA) for clients and internal teams.
• Support onboarding of new clients and security tools into the SOC environment.

Required Qualifications

• 2–4 years of experience in SOC operations or cybersecurity roles.
• Hands-on experience with SIEM platforms and security investigation.
• Strong understanding of network security, endpoint security, and common attack techniques.
• Experience working in a Managed Security Services (MSSP) or multi-client environment is highly preferred.

Technical Skills

• Advanced incident response and investigation techniques.
• SIEM correlation rule creation, alert tuning, and automation.
• Threat hunting methodologies and IOC analysis.
• Understanding of MITRE ATT&CK framework.
• Basic malware analysis and phishing investigation.

Preferred Certifications

• CEH
• GCIA / GCIH
• Splunk or Microsoft Sentinel Certifications

How to apply:

Send your CV to hr@dphish.com