Logo for KMC Solutions

XTN-44F4953 | SOC ANALYST L1

Role overview

Qualifications

  • Minimum of 1 year of experience in a Security Operations Center (SOC), Incident Response, or Cybersecurity Operations role.
  • Basic understanding of security operations and incident response processes.
  • Experience working with Microsoft security technologies.
  • Familiarity with cloud technologies and security concepts.

Responsibilities

  • Monitor and triage security alerts generated by SIEM, EDR, cloud, and security monitoring platforms.
  • Investigate suspicious activity and determine appropriate response actions.
  • Escalate incidents according to established procedures and severity classifications.
  • Document investigations, findings, and remediation actions within ticketing systems.

About the company

KMC Solutions logo

KMC Solutions

Outsourcing & Offshoring

The #1 flexible office space and fastest-growing EOR provider inΒ theΒ Philippines #DefyLimits πŸš€

Company details

Company typeLarge
IndustryOutsourcing & Offshoring
Company size1001 - 5000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

The Junior SOC / Incident Response Analyst is responsible for monitoring, triaging, investigating, and escalating security events across the organization's environment. This role will work closely with Security Operations, Incident Response, able to identify and respond to potential threats while helping improve the overall security posture of the organization.

The ideal candidate has at least one year of experience working in a SOC, Incident Response, or Cybersecurity Operations environment and possesses a strong foundation in Microsoft security technologies, cloud security, and security monitoring.

  • Comprehensive health benefits
  • Diverse learning & growth opportunities
  • Accessible Cloud HR platform (Sprout)
  • Above standard leaves 
  • Monitor and triage security alerts generated by SIEM, EDR, cloud, and security monitoring platforms.
  • Investigate suspicious activity and determine appropriate response actions.
  • Escalate incidents according to established procedures and severity classifications.
  • Perform initial incident analysis, containment support, and evidence collection.
  • Review logs from endpoints, servers, cloud environments, network devices, and security tools.
  • Document investigations, findings, and remediation actions within ticketing systems.
  • Participate in shift handoffs and ensure continuity of ongoing investigations.
  • Assist with threat hunting, detection tuning, and security monitoring improvements.
  • Support vulnerability management and remediation efforts.
  • Collaborate with internal teams to investigate and resolve security events.
  • Contribute to the creation and maintenance of runbooks, playbooks, and operational procedures.
  • Stay informed of emerging threats, attack techniques, and industry trends.
  • Minimum of 1 year of experience in a Security Operations Center (SOC), Incident Response, or Cybersecurity Operations role.
  • Basic understanding of security operations and incident response processes.
  • Experience working with Microsoft security technologies, including:
    •  Microsoft Sentinel
    •  Microsoft Defender for Endpoint
    • Microsoft Defender for Office 365
    • Microsoft Entra ID (Azure AD)
    • Microsoft Security Portal
  • Familiarity with cloud technologies and security concepts in:
    • Microsoft Azure
    • Amazon Web Services (AWS)
    • Google Cloud Platform (GCP) (preferred)
  • Experience reviewing and analyzing security logs and alerts.
  • Familiarity with endpoint, network, and identity-based security controls.
  • Good written and verbal communication skills.
  • Industry certifications such as
    • Security+
    • Network+
  • Experience with:
    • Microsoft Sentinel
    • ServiceNow
    • Jira
    • EDR/XDR technologies
    • Threat intelligence platforms
  • Basic scripting experience using PowerShell, Python, or Kusto Query Language (KQL).

Desired Skills

  • Strong attention to detail.
  • Ability to prioritize and manage multiple investigations simultaneously.
  • Willingness to learn and grow within Incident Response and Security Operations.
  • Team-oriented mindset with a strong customer-service focus.
  • Ability to work effectively in a fast-paced security environment.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
Β·

Related jobs

Other jobs at KMC Solutions

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.