L3SOCInternalAnalyst

Your Role As L3 SOC Internal Analyst, you lead the day‑to‑day operations of our Cyber Defense Center (CDC) and set the direction for effective monitoring, investigation, and incident response across all SOC tiers. You act as the primary interface to our Managed Security Service Provider (MSSP) and as the senior escalation point for our most complex and high‑impact investigations. Beyond the operational lead role, you shape and steer our threat hunting activities, ensuring they are risk‑driven, measurable, and firmly anchored in CDC governance. In close collaboration with engineering, CIRT, threat intelligence, and other capability functions, you drive the continuous evolution of our detection and response capabilities and help strengthen the organization's overall security posture. \- Act as the single point of contact for the MSSP conducting SOC 24/7 monitoring and manage vendor performance, outputs, and service assurance. \- Serve as the L3 escalation point for complex alerts, incidents, and investigations, providing senior technical expertise and decision‑making. \- Coordinate and lead response to incidents across SOC tiers and ensure effective handover to the CIRT for high and critical cases. \- Own the SIEM/SOAR detection lifecycle, including log source onboarding, continuous fine‑tuning of detection rules, and review/validation of use cases. \- Define threat hunting objectives, aligning them with the CDC’s strategic goals and coordinate MSSP-led threat hunting activities. \- Develop and produce monthly KPI dashboards and reporting to demonstrate SOC performance and drive improvements. \- Work with the engineering team to increase log coverage, telemetry quality, and overall visibility across the monitored environment. \- Serve as Duty Operational Manager on a rotational on‑call basis (24/7/365), providing senior operational oversight and incident support out of hours. Your Profile \- Degree in Computer Science, IT Security, or a related field, or equivalent wo