Level 1 - Security Engineer
The L1 SOC Analyst is responsible for 24×7 monitoring, alert triage,\nand initial incident response using SIEM, EDR, and security tools. This role ensures\ntimely detection and escalation of security events.
<\/div>
<\/div>
<\/div>
<\/div>
<\/div>
<\/div>
Key Responsibilities:<\/u><\/b>
<\/div>
<\/div>
<\/div>
<\/div>
\u2022 Monitor security alerts from SIEM / EDR / XDR / NGSIEM platforms
<\/div>
<\/div>
\u2022 Perform initial triage and validation of alerts (true positive vs false positive)
<\/div>
<\/div>
\u2022 Create and manage incident tickets in ITSM tools
<\/div>
<\/div>
\u2022 Follow predefined runbooks and playbooks for incident response
<\/div>
<\/div>
\u2022 Escalate suspicious or confirmed incidents to L2 SOC
<\/div>
<\/div>
\u2022 Perform basic enrichment (IP, URL, hash reputation checks)
<\/div>
<\/div>
\u2022 Maintain shift handover notes and documentation\n\u2022 Ensure adherence to SLA / KPI targets
<\/div><\/span>
Requirements<\/h3>
<\/div><\/span>
Requirements<\/h3>Required Skills:<\/b>
<\/div>
<\/div>\u2022 Basic understanding of:
<\/div>
<\/div> o Networking (TCP/IP, DNS, HTTP, VPN)
<\/div> o Security concepts (malware, phishing, brute force attacks)
<\/div>
<\/div>\u2022 Familiarity with tools:
<\/div> o SIEM (e.g., Splunk, QRadar, Sentinel)
<\/div> o EDR (e.g., CrowdStrike, Defender, Sophos)
<\/div>
<\/div>\u2022 Knowledge of:
<\/div> o Log analysis (Windows, Linux, Firewall logs)
<\/div>Basic scripting knowledge (optional): PowerShell / Python
<\/div>
<\/div>Certifications (Preferred)<\/b>
<\/div>
<\/div>\u2022 Security+
<\/div>\u2022 CEH (basic level)
<\/div>\u2022 SC\-200 (optional)
<\/div>
<\/div>Key KPIs<\/b>
<\/div>
<\/div>\u2022 Alert acknowledgment time
<\/div>\u2022 SLA adherence
<\/div>\u2022 Ticket quality & documentation
<\/div>\u2022 Escalation accuracy
<\/div><\/span>
Benefits<\/h3>How to Apply:<\/b> Interested candidates should submit a detailed resume and a\ncover letter outlining their qualifications and experience relevant to the role\napplied for. Applications should be sent via our careers portal or to hr@stfox.com<\/a>
<\/div>
<\/div>
<\/div>St. Fox is an Equal Opportunity Employer. We celebrate diversity and are\ncommitted to creating an inclusive environment for all employees.<\/b>
<\/div><\/span>
<\/div>
<\/div>
\u2022 Basic understanding of:
<\/div>
<\/div>
<\/div>
<\/div>
o Networking (TCP/IP, DNS, HTTP, VPN)
<\/div>
<\/div>
o Security concepts (malware, phishing, brute force attacks)
<\/div>
<\/div>
<\/div>
<\/div>
\u2022 Familiarity with tools:
<\/div>
<\/div>
o SIEM (e.g., Splunk, QRadar, Sentinel)
<\/div>
<\/div>
o EDR (e.g., CrowdStrike, Defender, Sophos)
<\/div>
<\/div>
<\/div>
<\/div>
\u2022 Knowledge of:
<\/div>
<\/div>
o Log analysis (Windows, Linux, Firewall logs)
<\/div>
<\/div>
Basic scripting knowledge (optional): PowerShell / Python
<\/div>
<\/div>
<\/div>
<\/div>
Certifications (Preferred)<\/b>
<\/div>
<\/div>
<\/div>
<\/div>
\u2022 Security+
<\/div>
<\/div>
\u2022 CEH (basic level)
<\/div>
<\/div>
\u2022 SC\-200 (optional)
<\/div>
<\/div>
<\/div>
<\/div>
Key KPIs<\/b>
<\/div>
<\/div>
<\/div>
<\/div>
\u2022 Alert acknowledgment time
<\/div>
<\/div>
\u2022 SLA adherence
<\/div>
<\/div>
\u2022 Ticket quality & documentation
<\/div>
<\/div>
\u2022 Escalation accuracy
<\/div><\/span>
Benefits<\/h3>
<\/div><\/span>
Benefits<\/h3>How to Apply:<\/b> Interested candidates should submit a detailed resume and a\ncover letter outlining their qualifications and experience relevant to the role\napplied for. Applications should be sent via our careers portal or to hr@stfox.com<\/a>
<\/div>
<\/div>
<\/div>St. Fox is an Equal Opportunity Employer. We celebrate diversity and are\ncommitted to creating an inclusive environment for all employees.<\/b>
<\/div><\/span>
<\/div>
<\/div>
<\/div>
St. Fox is an Equal Opportunity Employer. We celebrate diversity and are\ncommitted to creating an inclusive environment for all employees.<\/b>
<\/div><\/span>
<\/div><\/span>