SOC Analyst Level 1

Role Overview

The L1 SOC Analyst is responsible for real-time monitoring, alert triage, and initial investigation of security events across enterprise environments. The role serves as the first line of defense within the Security Operations Center (SOC), ensuring timely detection and escalation of security incidents.

Roles and Responsibilities:

• • Security Monitoring & Alert Handling
  • Monitor security alerts/events from:
    • SIEM (Microsoft Sentinel preferred)
    • Endpoint security tools (Defender/Crowdstrike XDR)
    • Identity systems (Entra ID)
  • Perform initial triage of alerts (true positive vs false positive)
  • Classify incidents based on severity and impact
  • Incident Management (L1 Activities)
  • Follow predefined incident response runbooks
  • Create and update incidents in ticketing system (ServiceNow, Jira, etc.)
  • Escalate validated incidents to L2/L3 teams with proper context
  • Track incident closure and ensure SLA adherence
  • Log Analysis & Investigation
  • Analyze logs from:
  • Endpoint (EDR/XDR)
  • Network/security tools
  • Identity and access logs
  • Correlate events using SIEM dashboards and queries
  • Identify suspicious patterns (login anomalies, malware alerts, etc.)
  • Threat Detection (Basic Level)
  • Monitor for:
    • Phishing and malware alerts
    • Suspicious login/activity
    • Policy violations
  • Assist in detecting:
    • AI-related threats (prompt misuse, abnormal access patterns)
    • Shadow IT / unauthorized apps

• Graduation/Post Graduation in Engineering or Related Field
• 0 to 2 years of experiepnce in SOC
• Good written and verbal communication
• Ability to work in 24x7 shift environment
• Team collaboration and discipline
• Basic understanding of
  • SIEM Tools (Microsoft Sentinel preferred)
  • Endproint Security (Defender, CrowdStrike, etc.)
  • Networking Concepts (TCP/IP, DNS, HTTP)

SoftwareOne and Crayon have come together to form a global, AI-powered software and cloud solutions provider with a bold vision for the future. With a footprint in over 70 countries and a diverse team of 13,000+ professionals, we offer unparalleled opportunities for talent to grow, make an impact, and shape the future of technology. At the heart of our business is our people. We empower our teams to work across borders, innovate fearlessly, and continuously develop their skills through world-class learning and development programs. Whether you're passionate about cloud, software, data, AI, or building meaningful client relationships, you'll find a place to thrive here. Join us and be part of a purpose-driven culture where your ideas matter, your growth is supported, and your career can go global.