Level 1.5 – iTDC | Senior Analyst
St. Fox is seeking experienced and motivated Senior Analysts to join the Intelligent Threat Defence Centre (iTDC). This role is critical to advanced alert triage, investigation, and response across complex security incidents. The position involves close collaboration with customers, mentoring L1 analysts, and working alongside integration, detection engineering, automation teams, and senior leads
<\/div>
<\/div>
(L2/L3).
<\/div>
<\/div>
<\/div>
<\/div>
The ideal candidate demonstrates strong analytical thinking, excellent communication skills, operational discipline, and a continuous improvement mindset, thriving in a 24×7 SOC environment while driving measurable improvements across defence operations and KPI metrics.
<\/div><\/span>
Requirements<\/h3>
<\/div><\/span>
Requirements<\/h3>● Perform in\-depth analysis of escalated, major, and critical security alerts to identify initial access vectors, attack paths, and indicators of compromise (IOCs)
<\/div>● Triage, investigate, and respond to P1 and P2 incidents in accordance with defined incident response procedures
<\/div>● Provide operational guidance and support to L1 analysts for handling P3 and P4 alerts and incidents
<\/div>● Use threat intelligence feeds, sandboxing solutions, and AI tools responsibly and securely within cyber defence operations
<\/div>● Conduct investigations using managed security tools including Email Gateway, EDR, XDR, NDR, IDPS, and related platforms
<\/div>● Maintain professionalism, discipline, and strong operational hygiene on the SOC floor
<\/div>● Identify recurring attack patterns, detection gaps, and improvement opportunities in detection engineering
<\/div>● Document investigation findings clearly and escalate confirmed major and critical incidents as per the escalation matrix
<\/div>● Ensure incident titles and storylines accurately reflect the nature and business impact of incidents
<\/div>● Validate incident reports to ensure precise mitigation steps and a clearly connected, evidence\-backed timeline
<\/div>● Work on major investigations assigned by senior analysts or raised directly by customers
<\/div>● Suggest fine\-tuning for noisy use cases using predefined reference sets or mapped detection sets
<\/div>● Escalate log truncation, parsing, normalization, and mapping issues impacting detection and investigation quality
<\/div>● Identify and report issues, bugs, or inaccuracies in automation workflows and response playbooks
<\/div>● Ensure proper handover between shifts, prioritize tasks, and distribute workload based on analyst capacity
<\/div>● Handle customer email communication and deliver critical client notifications during assigned shifts
<\/div>● Initiate breach calls involving responsible stakeholders when customer requests or incidents have major impact
<\/div>● Ensure strict adherence to incident response SOPs and SLA commitments
<\/div>
<\/div>Key Performance Indicators (KPIs):<\/b>
<\/div>
<\/div>● Mean Time to Triage (MTTT)
<\/div>● Mean Time to Investigate (MTTI)
<\/div>● Mean Time to Respond (MTTR)
<\/div>
<\/div>Skills and Qualifications:<\/b>
<\/div>
<\/div>● Bachelor's or Master's degree in computer science, Information Technology, or Cybersecurity
<\/div>● Strong written and verbal communication skills (Upper\-Intermediate level)
<\/div>● Strong threat\-hunting mindset with analytical and critical thinking abilities
<\/div>● Hands\-on experience in incident investigation, triage, and response within SOC environments
<\/div>● Ability to work efficiently under pressure and manage multiple incidents simultaneously
<\/div>● Willingness to work in 24×7 rotational shift
<\/div>
<\/div>Preferred Experience:<\/b>
<\/div>
<\/div>Mandatory: Minimum 2+ years of experience in MSSP SOC or cyber defence operations
<\/div><\/span>
Benefits<\/h3>● Competitive salary and benefits package
<\/div>● Opportunities for professional growth and career advancement
<\/div>● Exposure to cutting\-edge security technologies and enterprise\-scale investigations
<\/div>● A collaborative, diverse, and supportive work environment
<\/div>
<\/div>How to Apply:<\/b> Interested candidates should submit a detailed resume and a cover letter outlining their qualifications and experience relevant to the role. Applications can be sent via our careers portal or to hr@stfox.com<\/a>.
<\/div>
<\/div>St. Fox is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.<\/b>
<\/div><\/span>
<\/div>
● Triage, investigate, and respond to P1 and P2 incidents in accordance with defined incident response procedures
<\/div>
<\/div>
● Provide operational guidance and support to L1 analysts for handling P3 and P4 alerts and incidents
<\/div>
<\/div>
● Use threat intelligence feeds, sandboxing solutions, and AI tools responsibly and securely within cyber defence operations
<\/div>
<\/div>
● Conduct investigations using managed security tools including Email Gateway, EDR, XDR, NDR, IDPS, and related platforms
<\/div>
<\/div>
● Maintain professionalism, discipline, and strong operational hygiene on the SOC floor
<\/div>
<\/div>
● Identify recurring attack patterns, detection gaps, and improvement opportunities in detection engineering
<\/div>
<\/div>
● Document investigation findings clearly and escalate confirmed major and critical incidents as per the escalation matrix
<\/div>
<\/div>
● Ensure incident titles and storylines accurately reflect the nature and business impact of incidents
<\/div>
<\/div>
● Validate incident reports to ensure precise mitigation steps and a clearly connected, evidence\-backed timeline
<\/div>
<\/div>
● Work on major investigations assigned by senior analysts or raised directly by customers
<\/div>
<\/div>
● Suggest fine\-tuning for noisy use cases using predefined reference sets or mapped detection sets
<\/div>
<\/div>
● Escalate log truncation, parsing, normalization, and mapping issues impacting detection and investigation quality
<\/div>
<\/div>
● Identify and report issues, bugs, or inaccuracies in automation workflows and response playbooks
<\/div>
<\/div>
● Ensure proper handover between shifts, prioritize tasks, and distribute workload based on analyst capacity
<\/div>
<\/div>
● Handle customer email communication and deliver critical client notifications during assigned shifts
<\/div>
<\/div>
● Initiate breach calls involving responsible stakeholders when customer requests or incidents have major impact
<\/div>
<\/div>
● Ensure strict adherence to incident response SOPs and SLA commitments
<\/div>
<\/div>
<\/div>
<\/div>
Key Performance Indicators (KPIs):<\/b>
<\/div>
<\/div>
<\/div>
<\/div>
● Mean Time to Triage (MTTT)
<\/div>
<\/div>
● Mean Time to Investigate (MTTI)
<\/div>
<\/div>
● Mean Time to Respond (MTTR)
<\/div>
<\/div>
<\/div>
<\/div>
Skills and Qualifications:<\/b>
<\/div>
<\/div>
<\/div>
<\/div>
● Bachelor's or Master's degree in computer science, Information Technology, or Cybersecurity
<\/div>
<\/div>
● Strong written and verbal communication skills (Upper\-Intermediate level)
<\/div>
<\/div>
● Strong threat\-hunting mindset with analytical and critical thinking abilities
<\/div>
<\/div>
● Hands\-on experience in incident investigation, triage, and response within SOC environments
<\/div>
<\/div>
● Ability to work efficiently under pressure and manage multiple incidents simultaneously
<\/div>
<\/div>
● Willingness to work in 24×7 rotational shift
<\/div>
<\/div>
<\/div>
<\/div>
Preferred Experience:<\/b>
<\/div>
<\/div>
<\/div>
<\/div>
Mandatory: Minimum 2+ years of experience in MSSP SOC or cyber defence operations
<\/div><\/span>
Benefits<\/h3>
<\/div><\/span>
Benefits<\/h3>● Competitive salary and benefits package
<\/div>● Opportunities for professional growth and career advancement
<\/div>● Exposure to cutting\-edge security technologies and enterprise\-scale investigations
<\/div>● A collaborative, diverse, and supportive work environment
<\/div>
<\/div>How to Apply:<\/b> Interested candidates should submit a detailed resume and a cover letter outlining their qualifications and experience relevant to the role. Applications can be sent via our careers portal or to hr@stfox.com<\/a>.
<\/div>
<\/div>St. Fox is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.<\/b>
<\/div><\/span>
<\/div>
● Opportunities for professional growth and career advancement
<\/div>
<\/div>
● Exposure to cutting\-edge security technologies and enterprise\-scale investigations
<\/div>
<\/div>
● A collaborative, diverse, and supportive work environment
<\/div>
<\/div>
<\/div>
<\/div>
How to Apply:<\/b> Interested candidates should submit a detailed resume and a cover letter outlining their qualifications and experience relevant to the role. Applications can be sent via our careers portal or to hr@stfox.com<\/a>.
<\/div>
<\/div>
<\/div>
<\/div>
St. Fox is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.<\/b>
<\/div><\/span>
<\/div><\/span>