About the role
The SOC Engineer is responsible for designing and operating the technical foundation of the Security Operations Center. This role bridges security strategy and hands-on engineering, translating threat intelligence and business risks into effective detection, monitoring, and automated response capabilities that protect critical systems and data. Key Responsibilities
. Design, implement, and maintain SOC platforms, including SIEM (e.g., Microsoft Sentinel, Splunk), SOAR, and security monitoring tools . Build and optimize log ingestion pipelines, ensuring data quality, normalization, and efficient processing . Develop and manage detection use cases aligned with threat intelligence and MITRE ATT&CK methodologies . Conduct threat modeling for applications, cloud environments, and infrastructure to identify risks and monitoring gaps . Translate threat scenarios into detection logic, telemetry requirements, and automated response workflows . Design and implement SOAR play...