Security Operations Center (Manage Service SOC)

L1 Managed Services Security Engineer

(NAC, EDR, DLP, & Others)

Key Responsibilities

• 24/7 Security Operations: Monitor security events (NAC, EDR, DLP) on a shifting schedule at the customer site.
• Incident Triage & Analysis: Perform initial troubleshooting, differentiate false positives from valid incidents, and execute containment (e.g., endpoint isolation/quarantine) per playbooks.
• Escalation & Collaboration: Escalate validated incidents to L2/L3 or stakeholders and facilitate online collaboration (Teams/Zoom) for urgent troubleshooting.
• Incident Lifecycle Management: Document all findings in the ticketing system, track open incidents to closure, and ensure compliance with SOPs and SLA targets.
• Reporting & Improvement: Prepare shift handovers and daily summaries, while identifying recurring alert patterns for system tuning.

Requirements

• Education: Bachelor’s Degree in Cybersecurity, IT, or Computer Science (Fresh Graduates are welcome).
• Technical Core: Basic understanding of Security Operations (NAC, EDR, DLP, SIEM, Firewall, IDS/IPS, VPN) and log review processes.
• Domain Knowledge: Familiarity with device visibility/access control (NAC), process/malware alerts (EDR), and data leakage/policy violations (DLP).
• Analytical Skills: Strong ability to perform basic investigations using logs/dashboards and summarize findings clearly.
• Professionalism: Excellent communication, customer-service mindset, and ability to work under pressure during security incidents.
• Availability: Must be willing to work in a 24/7 shift-based environment.
• Preferred: Relevant cybersecurity certifications are a plus.