Analyst (Tier 1) - Security Operations
Location: Krakow, Poland (Hybrid)
Shift: 10-hour rotational shifts, 4 days/week or 8 hours 5 days a week
Department: Cybersecurity Operations Center (SOC)
Reports To: Team Lead
Job Summary
The Analyst (Tier 1) - Security Operations plays a crucial role in the Security Operations team, responsible for monitoring, detecting, and responding to security incidents. This entry-level role is ideal for candidates who are passionate about cybersecurity and eager to gain hands-on experience defending enterprise networks in a dynamic SOC environment.
Key Responsibilities
- Monitor security alerts generated by SIEM, EDR, firewall, and email security systems.
- Perform initial triage to validate and categorize alerts.
- Investigate phishing emails, malware alerts, and user-reported incidents.
- Escalate complex incidents to Tier 2/3 with proper context and documentation.
- Use tools like VirusTotal, AbuseIPDB, Shodan, Whois for recon and enrichment.
- Assist in correlating Indicators of Compromise (IOCs) using threat intelligence feeds.
- Create, update, and manage tickets in ServiceNow or similar case management platforms.
- Document all analyst actions and maintain accurate incident records for audit and learning.
- Collaborate with other SOC analysts, IT, and network teams.
- Follow SOC playbooks, escalation paths, and SLA timelines.
- Participate in daily shift handovers and analyst retrospectives.
Requirements
- Bachelor's Degree in Cybersecurity, Computer Science, Networking, or a related field. Final-year undergraduates with strong skills may apply.
- Experience 6–12 months of hands-on experience in a SOC, IT Helpdesk, Network Support, or Technical Support role is expected.
- Certifications – CEH,CND,CompTIA Security+, CySA+, or SC-200 are considered advantages.
- Basic understanding of TCP/IP, DNS, Windows/Linux OS, and email protocols. Familiarity with SIEM, endpoint security, and phishing detection tools.
- Clear communication in English (verbal and written), proactive attitude, teamwork, and good documentation habits.
- Willingness to work in rotational shifts, including weekends, and holidays as part of a 24x7 SOC.
- Strong analytical thinking and ability to process large amounts of information.
- Attention to detail and accuracy in documenting work.
Why Join Us
- Be part of a global cybersecurity team protecting a dynamic enterprise environment.
- Opportunity to work with modern security technologies and drive tool innovation.
- Collaborative culture with professional development opportunities.
- Hybrid work model with our Kraków office as the primary location.