SOC Analyst – Level 1

Job not on LinkedIn

🕒 March 12

🗣️🇧🇷🇵🇹 Portuguese Required

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of IPV7

IPV7

201 - 500 employees

Founded 2014

🔒 Cybersecurity

Cybersecurity • Cloud Computing • Consulting

IPV7 is a business solution partner that specializes in engineering services, consulting, cyber security, network management, and cloud computing. The company provides tailored solutions for Internet Service Providers (ISPs), telecommunication companies, government, and enterprise sectors across Latin America. Its focus areas include technical and operational auditing, risk assessment, and strategic consultancy to facilitate robust network systems and software solutions.

📋 Description

• Perform active monitoring of security events using SIEM platforms (such as Wazuh, Splunk, Microsoft Sentinel, or QRadar) and endpoint protection tools (EDR/XDR). • Analyze and triage alerts generated by security tools, identifying potential incidents and reducing false positives. • Execute initial containment actions according to defined security playbooks (e.g., host isolation or credential resets). • Log and document incidents and activities in ITSM ticketing systems, ensuring traceability and organized information. • Perform structured escalation of more complex incidents to N2 or N3 teams, ensuring the full investigation context is handed over. • Track operational detection and incident response metrics and indicators.

🎯 Requirements

• Knowledge of networking fundamentals and protocols such as the OSI model, TCP/IP, and DNS. • Experience or familiarity with network traffic analysis tools (Wireshark or Tcpdump). • Operational knowledge of Windows and Linux environments, including basic terminal/CLI navigation. • Basic understanding of security solutions such as firewalls, IPS/IDS, WAF, and antivirus/EDR. • Familiarity with cyber threat concepts like phishing, malware, brute-force attacks, and ransomware. • Bachelor’s degree completed or in progress in Cyber Defense, Computer Science, Engineering, Networks, or related fields. • Entry-level information security certifications such as CompTIA Security+, Cisco CyberOps Associate, Microsoft SC-900, or similar. • Practical knowledge of the MITRE ATT&CK framework. • Previous experience in technical support, IT infrastructure, or systems monitoring environments.

Apply Now