SOC L2 Admin

We are seeking a skilled SOC Level 2 (L2) Security Administrator with at least 6 years of experience in cybersecurity operations. The candidate should have hands-on expertise in threat monitoring, incident response, and vulnerability management, with added familiarity with SAP HANA environments from a security perspective. This role involves handling escalated security incidents, tuning SIEM alerts, and ensuring secure operations across enterprise systems, including SAP.

Key Responsibilities:

• Monitor and analyze security alerts escalated from SOC Level 1 team using SIEM tools (e.g., Splunk, QRadar, ArcSight).

• Investigate and respond to security incidents such as malware infections, unauthorized access, data exfiltration, and phishing attacks.

• Perform root cause analysis and remediation coordination for security incidents.

• Analyze and correlate logs from network devices, firewalls, servers, SAP HANA systems, and cloud platforms.

• Conduct vulnerability assessments and support patch management activities in collaboration with system and SAP BASIS teams.

• Ensure security compliance of SAP HANA landscapes and other critical applications.

• Create and maintain incident documentation and reports.