Security Analyst

Please submit your CV in English. Thank you.

Your Mission

As a Tier 2 SOC Analyst, you will serve as a subject matter expert in our technology stack while optimizing security tools and detection workflows, mentoring junior analysts on complex investigation techniques, and driving continuous improvement initiatives across our multi-client SOC environment.

This role demands advance analytical skills to conduct in-depth analysis of escalated security incidents from Tier 1 analysts, performing advanced threat investigations to determine attack vectors, assess impact scope, and develop comprehensive remediation strategies.

Your responsibilities will be :

• General responsibilities
• Recommend improvements for Standard Operating Procedures (SOPs)
• Propose enhancement on tools and workflow
• Respond in a timely manner (within documented SLA) to support tickets.
• Document actions in tickets to effectively communicate information internally and to customers.
• Adhere to policies, procedures, and security best practices.
• Take responsibility for customer satisfaction and overall success of managed services.
• Be available, ready, and able to accept incoming clients calls
• Mentor fellow Security Engineers and Security Analysts.
• Service improvement
• Optimize SIEM rules and detection logic to reduce false positives and improve detection accuracy Support rules factory program in improving the global set of detection
• Validate Go-to-Active and Go-to-Prod gates of our new clients to ensure a smooth transition to operation
• Continuously improve incident templates in terms of content for the clients and in terms of
• automation to best support the operation
• Support rollout of new set of rules for our clients
• Qualify, analyze, and provide recommendations for new standard data source requests
• Support Product teams to build best new services to fit with Operations capabilities (needs,
• scalability, efficiency)
• Threat Monitoring
• Manage escalated cases from T1 Analysts
• Analyze and respond to security events from SIEM, EDR, FWs, IDS, IPS, AV and other security data
• sources.
• Deliver high quality Incident Handling and investigation
• Conduct threat hunting activities using advanced analytics and threat intelligence
• Provide 24 / 7 on-call support for critical security incidents outside business hours

You are

You have

Why you’ll love it here

If you are seeking a culture that supports growth, fosters success, and moves the industry forward, then Kudelski Security is where you need to be! As the premier provider of cybersecurity service and solutions, Kudelski Security has the most comprehensive ecosystem of security products and partners to deliver unparalleled services. Our rich and successful history with our clients is based on innovation and trust, serving clients of varying sizes and industries, including commercial, government and education. We have the proven expertise to plan, build, and run successful security programs across Data & Cloud security, Application Security, Microsoft 365 security, Data Privacy, Managed Security services, and IoT / OT security. Kudelski remains committed to advocating Diversity, Equality, and Inclusion within our organization and throughout the industry.

With Kudelski, you can expect

About Kudelski Security

Kudelski Security, a division of the Kudelski Group (SIX : KUD.S), is an innovative, independent Swiss provider of tailored cyber and media security solutions to enterprises and public sector institutions. Our team of security experts delivers end-to-end consulting, technology, managed services, and threat intelligence to help organizations build and run successful security programs. Our global reach and cyber solutions focus is reinforced by key international partnerships. Kudelski Security is headquartered in Phoenix, Arizona and Cheseaux-sur-Lausanne, Switzerland. For more information, please visit :