SOC Level 2 Security Analyst – Riyadh – 3 to 5 Years Experience
Job Description
We are seeking a skilled SOC Level 2 Security Analyst to support security monitoring, investigation, and incident response activities within a 24×7 Security Operations Center (SOC). The ideal candidate will perform advanced alert analysis, lead incident investigations, and contribute to continuous improvement of detection capabilities across multiple environments.
Responsibilities:
- Perform advanced analysis and investigation of security alerts escalated from L1 analysts
- Validate, triage, and respond to security incidents across network, endpoint, cloud, and application environments
- Conduct root cause analysis and determine incident scope and impact
- Perform log analysis using SIEM and other security tools
- Lead containment, eradication, and recovery activities during security incidents
- Tune and improve SIEM detection rules to reduce false positives and improve alert quality
- Assist in developing and validating new detection use cases and correlation rules
- Provide feedback to SIEM/SOAR teams for automation and process improvements
- Support mapping of detections to the MITRE ATT&CK framework
Job Requirements
• 3–5 years of hands-on experience in SOC, security operations, or incident response
• Strong experience with SIEM platforms such as Splunk, QRadar, Sentinel, or Elastic
• Solid understanding of the incident response lifecycle
• Good knowledge of network protocols and security (TCP/IP, DNS, HTTP, TLS)
• Experience with endpoint security and EDR/XDR tools
• Ability to analyze firewall, IDS/IPS, proxy, email, and endpoint logs
• Experience investigating phishing and malware incidents
Preferred Qualifications
• Familiarity with SOAR platforms and security automation
• Strong understanding of threat detection and response frameworks
• Relevant cybersecurity certifications (preferred but not mandatory)
• Excellent analytical, documentation, and communication skills
• To Apply: Interested candidates are requested to share their CVs
About the Company
Flint International is a global professional services and consulting organization supporting clients across technology, cybersecurity, and digital transformation initiatives.
