Careers-socl3

Role Overview

The SOC L3 Analyst serves as the senior technical escalation point within the Security Operations Center, leading complex incident response and threat detection initiatives. This role is responsible for managing high-impact incidents, enhancing detection capabilities, and providing technical leadership to ensure robust security operations across enterprise and cloud environments.

Key Responsibilities

• Lead advanced incident response, threat hunting, and forensic investigations
• Act as primary escalation point for critical security incidents
• Develop and optimize detection rules, use cases, and SOC playbooks
• Provide technical mentorship and guidance to L1 and L2 analysts
• Collaborate with stakeholders to drive containment, recovery, and long-term remediation
• Monitor emerging threat trends and strengthen detection strategies
• Review incident metrics, compliance, and overall SOC effectiveness

Required Skills & Experience

• 5–8+ years of experience in SOC, incident response, or cyber defense roles
• Expert-level experience with SIEM, EDR/XDR, network, and cloud security technologies
• Strong expertise in threat hunting, log analysis, and incident management
• Deep understanding of enterprise security architecture and attack frameworks
• Excellent stakeholder communication, leadership, and reporting skills
• Advanced cybersecurity certifications preferred (CISSP, CEH, Microsoft Security, or equivalent)