Security Analyst Tier 2

Please submit your CV in English. Thank you.

Your Mission

As a Tier 2 SOC Analyst , you will serve as a subject matter expert in our technology stack while optimizing security tools and detection workflows, mentoring junior analysts on complex investigation techniques, and driving continuous improvement initiatives across our multi-client SOC environment .

This role demands advance analytical skills to conduct in-depth analysis of escalated security incidents from Tier 1 analysts , performing advanced threat investigations to determine attack vectors, assess impact scope, and develop comprehensive remediation strategies.

Your responsibilities will be :

General responsibilities

Recommend improvements for Standard Operating Procedures (SOPs)

Propose enhancement on tools and workflow

Respond in a timely manner (within documented SLA) to support tickets.

Document actions in tickets to effectively communicate information internally and to customers.

Adhere to policies, procedures, and security best practices.

Take responsibility for customer satisfaction and overall success of managed services.

Be available, ready, and able to accept incoming clients calls

Mentor fellow Security Engineers and Security Analysts.

Service improvement

Optimize SIEM rules and detection logic to reduce false positives and improve detection accuracy Support rules factory program in improving the global set of detection

Validate Go-to-Active and Go-to-Prod gates of our new clients to ensure a smooth transition to operation

Continuously improve incident templates in terms of content for the clients and in terms of

automation to best support the operation

Support rollout of new set of rules for our clients

Qualify, analyze, and provide recommendations for new standard data source requests

Support Product teams to build best new services to fit with Operations capabilities (needs,

scalability, efficiency)

Threat Monitoring

Manage escalated cases from T1 Analysts

Analyze and respond to security events from SIEM, EDR, FWs, IDS, IPS, AV and other security data

sources.

Deliver high quality Incident Handling and investigation

Conduct threat hunting activities using advanced analytics and threat intelligence

Provide 24 / 7 on-call support for critical security incidents outside business hours

You are

A team-player willing to iterate on our internal processes to improve the team’s efficiency

Experience in international / global environment

At ease with solving complex problems

Dynamic, with strong interpersonal and communication skills

Autonomous, self-taught and transparent

Able to handle and prioritize parallel tasks with multiple interfaces

Fluent in English

You have

Minimum 4 years of hands-on experience in cybersecurity operations, incident response, or threat analysis, bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or equivalent experience and

Proven track record in a SOC and international / global environment

Advanced proficiency with SIEM platforms (Splunk, QRadar, Sentinel, etc.)

Extensive experience with EDR / XDR solutions (CrowdStrike, SentinelOne, Microsoft Defender, etc.)

Deep understanding of network security technologies (firewalls, IDS / IPS, network monitoring)

Strong knowledge of Windows and Linux / Unix operating systems and forensics

Experience with cloud security (AWS, Azure, GCP) and containerization technologies

Familiarity with OT / ICS environments and industrial control systems security

Proficiency in scripting languages (Python, PowerShell, Bash) for automation

Understanding of threat intelligence platforms and MITRE ATT&CK framework

Spanish or any other language

Why you’ll love it here

If you are seeking a culture that supports growth, fosters success, and moves the industry forward, then Kudelski Security is where you need to be! As the premier provider of cybersecurity service and solutions, Kudelski Security has the most comprehensive ecosystem of security products and partners to deliver unparalleled services. Our rich and successful history with our clients is based on innovation and trust, serving clients of varying sizes and industries, including commercial, government and education. We have the proven expertise to plan, build, and run successful security programs across Data & Cloud security, Application Security, Microsoft 365 security, Data Privacy, Managed Security services, and IoT / OT security. Kudelski remains committed to advocating Diversity, Equality, and Inclusion within our organization and throughout the industry.

With Kudelski, you can expect

Immersion in an incredible culture and the vibe of a fast moving and growing organization full of opportunity.

Opportunity to work with talented peers.

Creative problem-solving and the ability to tackle unique, complex projects.

Competitive compensation with a benefits package that protects you and your loved ones and allows you to pursue career growth with tuition reimbursement.

Generous time off for rest, relaxation, and hobbies.

Colleagues from across the globe who are interested in helping clients protect their companies so they can focus on fulfilling their mission.

About Kudelski Security

Kudelski Security, a division of the Kudelski Group (SIX : KUD.S), is an innovative, independent Swiss provider of tailored cyber and media security solutions to enterprises and public sector institutions. Our team of security experts delivers end-to-end consulting, technology, managed services, and threat intelligence to help organizations build and run successful security programs. Our global reach and cyber solutions focus is reinforced by key international partnerships. Kudelski Security is headquartered in Phoenix, Arizona and Cheseaux-sur-Lausanne, Switzerland. For more information, please visit :