Security Operations

• Engage with clients to assess their SOC maturity across technology, process, and people.
• Provide expert guidance on enhancing incident detection, response, and threat hunting capabilities.
• Recommend and help implement frameworks (e.g., MITRE ATT&CK, NIST CSF, ISO 27001) into SOC operations.
• Design, configure, and optimise SIEM solutions (Splunk required; others such as QRadar, Elastic, or Sentinel are advantageous).
• Support integration of threat intelligence platforms, SOAR tools, EDR/XDR solutions, and log management systems.
• Develop advanced detection rules, dashboards, and use cases to improve visibility and response.
• Define and improve SOC processes (incident response, threat hunting, escalation workflows).
• Conduct gap analyses and propose roadmaps for SOC capability maturity.
• Deliver workshops, training sessions, and knowledge-sharing to client SOC teams.

Security Operations Center Consultant

Security Operations Specialist

SOC Analyst