Security Operations Center (SOC) Engineer

About the role

ICE Consulting, a leading Managed IT Services provider, is looking for a Security Operations Center (SOC) Engineer to join its SOC team. The engineer will monitor, analyze and respond to security threats, and lead the implementation and optimisation of SIEM solutions for the company and its clients.

Key responsibilities

• Design, implement and manage SIEM platforms for internal use and client environments.
• Develop SIEM content such as use cases, dashboards, reports, rules and filters.
• Monitor security alerts, perform log analysis, correlate events and create threat scenarios.
• Lead zero‑day and imminent threat response, translating threat intelligence into actionable controls across firewalls, IPS and malware detection tools.
• Build custom connectors and parsers for unsupported devices.
• Deploy and fine‑tune security solutions to reduce false positives/negatives.
• Utilise the MITRE ATT&CK framework for threat modelling.
• Collaborate with cross‑functional teams to resolve incidents and recommend improvements.

Required profile

• Proven experience with SIEM technologies and SOC operations.
• Strong analytical skills for log and network traffic analysis.
• Ability to lead incident response and threat hunting activities.
• Experience creating custom parsers/connectors.
• Familiarity with MITRE ATT&CK framework.

Required skills

• SIEM platforms (e.g., Splunk, QRadar, ArcSight)
• Log management and parsing
• Threat intelligence integration
• Firewall, IPS and malware detection tools
• Scripting languages for automation (e.g., Python, PowerShell)
• MITRE ATT&CK framework