Senior Soc Analyst

Analyst
Dubai
June 23, 2026
Application ends: September 21, 2026

Job Description

REQUIREMENTS

Technical Expertise:

  • Offensive: Proven mastery in manual exploitation, bypass techniques, and complex AD environments (Kerberoasting, DCSync, Pass-the-Hash, etc.).
  • Defensive: Deep experience engineering and tuning SIEM solutions (Wazuh preferred) and managing Threat Intelligence Platforms (MISP).
  • Triage: Expert-level capability in packet analysis, endpoint forensics, and malware behavior analysis for comprehensive RCA.
  • Tools: Hands-on experience with Wazuh, MISP, Motadata ITSM, Nessus, Greenbone/OpenVAS, Metasploit, Burp Suite, Cobalt Strike (or similar C2 frameworks).

Process & Compliance:

  • Strong working knowledge of UAE Cyber Defense Standards (DESC ISR, NESA) and international frameworks like ISO 27001 and MITRE ATT&CK.
  • Deep understanding of ITIL v3/v4 processes, particularly in how they govern enterprise IT service management and incident handling.

Profile & Mindset:

  • The “Hacker” Mindset: Thinks like an adversary to build better defenses.
  • Long-term Architect: Doesn’t just close tickets; builds scalable processes and automations that permanently solve underlying issues.
  • Leader: Capable of operating autonomously as a senior SME while patiently elevating the skills of the wider team.

Mandatory Certifications:

  • Offsec OSCP+ (Mandatory)
  • Offsec SOC 200 OSDA (Mandatory)
  • MAD20 by MITRE (Preferred)
  • CyberWarFare Labs Certified Purple Team Analyst (CPTA v2) (Preferred)
  • Hack The Box (Purple Team Path) (Preferred)
  • OffSec Experienced Penetration Tester (OSEP)  (Preferred)
  • Certified Red Team Operator (CRTO)  (Preferred)

RESPONSIBILITIES

Advanced Offensive Security (Red Teaming & VAPT)

  • Lead and execute complex, manual Penetration Testing and Vulnerability Assessments across enterprise infrastructures.
  • Perform advanced Active Directory (AD) privilege escalation, lateral movement, and manual exploitation techniques without relying solely on automated scanners.
  • Act as the technical cornerstone for formalized VAPT service offerings, establishing testing methodologies and reporting standards.
  • Utilize and maintain offensive toolkits, including Nessus, Greenbone/OpenVAS, and custom penetration testing frameworks.

SOC Engineering & Threat Detection (Blue Teaming)

  • Engineer, deploy, and continuously fine-tune SIEM/XDR detection rules (specifically within Wazuh) to dramatically reduce false positives and alert fatigue.
  • Develop, implement, and maintain automated SOAR playbooks and incident response workflows.
  • Integrate threat intelligence feeds (via MISP) into daily SOC operations to ensure proactive detection of emerging threats.
  • Optimize the integration between the SOC infrastructure and Motadata ITSM to ensure seamless ticketing, escalation, and tracking.

Incident Triage & Root Cause Analysis (RCA)

  • Act as the ultimate escalation point for complex security incidents, performing deep Root Cause Analysis (RCA) on critical alerts.
  • Conduct post-incident reviews, translating findings directly into infrastructure hardening and improved detection logic.

Process, Compliance & Leadership

  • Ensure all SOC and VAPT operations align strictly with UAE cyber defense frameworks, specifically the Dubai Electronic Security Center Information Security Regulation (DESC ISR) and ISO 27001.
  • Standardize operations using established ITIL processes (Incident, Problem, and Change Management) within the Motadata ITSM environment.
  • Provide hands-on mentorship, technical guidance, and training to SOC analysts and junior engineers, fostering a culture of continuous learning and high performance.

Are you interested in this position?


Apply by clicking on the “Apply Now” button below!

#CrossChannelJobs #JobSearch
#CareerOpportunities #HiringNow
#Employment #JobOpenings
#JobSeekers
#FacebookLinkedIn

Related Jobs