SOC Specialist I - Cyber Security

• *Role description**

This role bridges the gap between threat intelligence, SOC operations, and platform engineering, ensuring that Sentinel is effectively leveraged to protect the organization s digital assets.

Key Responsibilities

Use Case Development

Design and implement detection rules, analytics, and playbooks tailored to organizational threats.

Translate threat intelligence and risk scenarios into actionable Sentinel use cases.

Continuously refine use cases based on threat landscape changes and incident learnings.

Incident \& Case Management

Leverage Sentinel s native case management features to group incidents, assign tasks, and track remediation efforts. \[www.modern...ecurity.nl]

Link multiple incidents to a single case for complex investigations. \[techcommun...rosoft.com]

Automation \& Orchestration

Develop and maintain Sentinel playbooks for automated incident response, enrichment, and ticketing system integration. \[learn.microsoft.com]

Collaborate with SOC engineers to streamline workflows using automation rules.

Collaboration \& Governance

Work with SOC analysts, threat hunters, and platform teams to ensure use cases align with operational needs.

Implement Role\-Based Access Control (RBAC) for case and incident visibility. \[learn.microsoft.com]

Monitoring \& Optimization

Monitor use case performance and detection efficacy.

Tune analytics rules and detection logic to reduce false positives and improve quality.

Required Skills \& Qualifications

Strong understanding of SIEM platforms, especially Microsoft Sentinel.

Experience in cybersecurity operations, threat detection, and incident response.

Familiarity with KQL (Kusto Query Language) for writing Sentinel queries.

Knowledge of MITRE ATT\&CK framework and threat modeling.

Experience with automation tools and playbook development in Sentinel.

Excellent analytical, documentation, and communication skills."

• *Skills**

cybersecurity,mitre att\&ck,intrusion prevention system,malware analysis,security compliance,endpoint security,

• *About UST**

UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world’s best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future\-proof philosophy, UST embeds innovation and agility into their clients’ organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.