Job Description

As a Senior SOC Engineer at Aspire, youll play a pivotal role in the administration of our IT systems, SOC development, and swift response to security alerts. Join a dynamic and rapidly growing security team, with minimal requirements for on-premise administration. Your expertise in cloud environments and Software as a Service (SaaS) will be indispensable. Key Responsibilities: Keep building our SIEM/SOC with Azure Sentinel, Grafana and everything you think we should use. Ability to handle critical security incidents following proper IR processes and procedures. Act as the technical subject-matter-expert for SOC related topics or during incidents. Monitor and analyze security logs and alerts to detect potential security threats. Develop and optimize automations to scale detection and response capabilities. Research emerging cyber threats, vulnerabilities, and exploits relevant to our infrastructure and products. Implementing threat intelligence from different sources. Utilize threat modeling and log analysis to build behavioral based detections. Work with stakeholders to discover new detection capabilities and logging sources. Design, develop, and review security policies, procedures, and standards aligned with industry best practices. Assist in preparing security reports for compliance and audit purposes. Collaborate with IT and cross-functional teams to reinforce security measures and controls. Engage in incident response, root cause analysis, disaster recovery planning, and related exercises. Support IT integration, encompassing hardware, software maintenance, backups, and updates. Offer technical support to internal teams and end-users. Improve security architecture for SOC tools and other IT technologies. Document, respond, and report on security incidents and IT operations. Continuously refine IT operation processes and procedures to ensure top-tier and secure service delivery. Draft user manuals, standard operating procedures (SOPs), and FAQs. Steer and support daily IT and security initiatives. Essential Qualifications and Experience: Strong proficiency in written and spoken English. Tertiary education from a recognized University or Polytechnic. Must have hands-on experience with SIEM/SOAR/EDR tools, working knowledge on Sentinel,Logic Apps and MS-365 suites would be preferable. Knowledge of Cloud environments such as AWS Microsoft Azure would be essential.Experience with threat hunting and building threat detections, creating automation playbooks. Familiar with shell scripting, or another scripting language such as Python.Skilled in memory forensics, malware analysis, network traffic analysis, and log scrutiny. Passion for staying abreast of the latest security trends and tech for optimal security maintenance. Prior experience in SOC construction, maintenance, and operations. Strong knowledge of Security frameworks such as Cyber Kill Chain and MITRE ATTCK and how they can be used to understand and defend against cyber attacks. Excellent problem-solving skills combined with hands-on experience doing root cause analysis and post-incident reviews. Willingness to work an on-call rotation during out-of-business hours and weekends. Any Security related certifications would be an added advantage. Desirable Skills: Degree in Computer Science, IT, Engineering, or a related field. Familiarity with AWS, GCloud, GitHub, Google Workspace,CloudFlare, Azure Logic Apps, and malware analysis. Microsoft 365 (including Entra and Intune) Experience in retesting penetration testing findings. Proficiency with Linux environments. Software development skills, especially in Python, Bash, and Powershell. Personal tech projects showcased on platforms like a blog or Github.