SOC Analyst

Overview:
At KPMG, you’ll join a team of diverse and dedicated problem solvers, connected by a common cause: turning insight into opportunity for clients and communities around the world.

Are you passionate about cyber defense, threat detection, and incident response? Do you thrive in fast-paced environments where real-time security investigations protect organizations from cyber threats? If so, we have an exciting opportunity for you

We’re looking for a **SOC Analyst (Night Shift)**to join our cybersecurity team and play a critical role in monitoring, analyzing, and responding to security events for multiple clients. As part of a major worldwide Managed Detection and Response (MDR) service provider, you will actively defend businesses against advanced cyber threats, ensuring their critical assets remain secure and resilient in the face of evolving attacks.

What you will do:

- Continuously monitor security alerts from SOAR, SIEM, and other security tools across multiple clients.
- Rapidly assess alerts, classify them by severity, type, and source, and escalate when necessary.
- Validate alerts with enrichment tools, logs, and threat intelligence to distinguish true threats from false positives.
- Prioritize and escalate security incidents requiring deeper investigation to senior analysts.
- Analyze security events to assess impact, scope, and affected systems.
- Leverage EDR, SIEM, NDR, and forensic tools to investigate threats.
- Identify patterns of malicious activity and potential threat actor tactics.
- Recommend mitigation strategies and response actions to minimize risks.
- Maintain thorough documentation, including timestamps, affected systems, and initial findings.
- Communicate findings with clients, team leads, and stakeholders to ensure transparency and resolution.
- Take action through client security technologies (e.g., EDR, firewalls, and access controls) to contain and isolate incidents when necessary.
- Provide feedback on alert accuracy to improve SOC detection and triage processes.
- Stay up to date with cyber threats, attack techniques, and evolving security best practices.
- Participate in cybersecurity training, threat-hunting exercises, and blue team collaborations.
- Assist colleagues during security incidents and contribute to an efficient team-based defense strategy.

What you bring to this role:

- SIEM & EDR Investigation - Strong hands-on experience with Endpoint Detection & Response (EDR), Network Detection & Response (NDR), and SIEM platforms.
- Malware & Threat Analysis - Ability to analyze logs,and network traffic to detect malicious behavior.
- Forensic
- Investigating incidents using security products alerts
- KQL Knowledge - Experience in Microsoft Sentinel (Kusto Query Language - KQL) for security investigations.
- Excellent written and verbal communication skills to be able to answer to all of our clients.
- Ability to engage with clients professionally, clearly, and supportively.
- Can translate complex security incidents into clear explanations for non-technical stakeholders.
- Works effectively with peers in high-pressure situations.
- Ability to stay composed and make informed decisions under pressure in a dynamic environment.
- Ability to spot anomalies and critically analyze security incidents.
- Adapts quickly to evolving cyber threats and finds effective solutions.
- Ability to prioritize alerts efficiently and meet response SLAs.

**Providing you with the support you need to be at your best**

Our Values, The KPMG Way:
**Integrity**, we do what is right | **Excellence**, we never stop learning and improving | **Courage**, we think and act boldly | **Together**, we respect each other and draw strength from our differences | **For Better**, we do what matters

**Adjustments and accommodations throughout the recruitment process