2 September, 2025

Security Operations Center (SOC) Engineer

Job Type: Full-time

About the Role

We are looking for a highly motivated and diligent SOC Engineer to join our team. The SOC Engineer will be primarily responsible for the implementation, maintenance, and optimization of SOC tools, especially SIEM, SOAR, and EDR/XDR systems. This role requires in-depth technical knowledge in SOC tools, system integration, automation, and enhancement of security operations infrastructure.

Key Responsibilities:

  • Implement, configure, and manage SOC tools, including SIEM platforms and SOAR systems (e.g., Splunk Phantom, Palo Alto Cortex XSOAR, IBM QRadar SOAR).
  • Develop alerting rules, correlation logic, and automated response playbooks to improve the effectiveness of security platforms and reduce false positives.
  • Ensure high availability, reliability, and optimal performance of SOC technologies.
  • Collaborate closely with SOC analysts and incident response teams to optimize and enhance security tools.
  • Conduct health checks, performance assessments, and upgrades of security platforms.
  • Develop custom automation solutions and scripts using Python, PowerShell, or Bash to automate security operations.
  • Support rapid incident response and remediation through SOAR-based automation and integration during security events.
  • Assist team members in the preparation, maintenance, and implementation of procedures, configurations, and operational documentation.
  • Coordinate with internal and external stakeholders to ensure the implementation and management of security measures across the organization.

Note: Th

e responsibilities include both internal company operations and services provided to external clients.

Requirements:

  • Bachelor’s degree in Information Security, Computer Science, or a related field, or equivalent work experience.
  • Minimum of 3–5 years of experience in a SOC Engineer or similar role.
  • Hands-on experience with SIEM/SOAR platforms such as Splunk Phantom, Palo Alto Cortex XSO
  • AR, IBM QRadar SOAR. Relevant certifications are a plus.
  • Strong understanding of security technologies including firewalls, IDS/IPS, EDR/XDR, etc.
  • Proficiency in scripting and automation using Python, PowerShell, or Bash.
  • Familiarity with cybersecurity frameworks and standards such as MITRE ATT&CK, NIST Cybersecurity Framework, CIS Controls, and ISO 27001.
  • Relevant certifications such as CompTIA Security+, CySA+, CASP+, CEH, etc., are considered an advantage.
  • Strong analytical skills in tool integration, performance tuning, and infrastructure troubleshooting.
  • Ability to communicate complex security issues clearly to both technical and non-technical teams.
  • Languages: Azerbaijani (required), English (required), Russian (preferred)

 

Candidates with less than 3 years of experience will not be considered for the selection process.

Apply Online

    💬
    Support Chat ×
    Hello! How can we assist you today?