SOC L2 Incident Response Specialist

 Posted 2 days ago
  
 China
  
2-5 years experience
Apply Now

Please mention DailyRemote when applying

AI Summary

Investigate and analyze escalated security alerts to perform containment and remediation activities across enterprise environments. Manage the full incident lifecycle and collaborate with cross-functional teams to improve SIEM use cases and response playbooks.
  • Role Overview 
    We are looking for a SOC L2 Incident Response Specialist to support cyber defense operations by investigating security incidents, responding to threats, and improving detection and response capabilities across enterprise environments. 

     

    Key Responsibilities

  • Investigate and analyze escalated security alerts and incidents from SOC L1.
  • Perform incident response, containment, and remediation activities, including endpoint isolation, account suspension, malicious process termination, IOC-based threat hunting, and blocking malicious IPs, domains, or URLs.
  • Analyze events across SIEM, EDR/XDR, network, cloud, identity, and endpoint security platforms.
  • Conduct threat hunting and use threat intelligence to identify potential risks and suspicious behaviors.
  • Manage incidents throughout the lifecycle and maintain accurate investigation documentation in ticketing systems.
  • Collaborate with infrastructure, application, cloud, and business teams during incident handling.
  • Support continuous improvement of SIEM use cases, response playbooks, and SOC processes

Required Qualifications

  • 3+ years of experience in SOC Operations, Incident Response, Cyber Defense, or Security Monitoring.
  • Hands-on experience with SIEM platforms such as Microsoft Sentinel, Splunk, IBM QRadar, or ArcSight.
  • Experience with EDR/XDR solutions such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black.
  • Strong understanding of incident response lifecycle, threat detection and analysis, network security, endpoint security, identity security, and cloud security fundamentals.
  • Familiarity with MITRE ATT&CK, Cyber Kill Chain, IOC/IOA analysis, and common malware investigation techniques.
  • Strong analytical, troubleshooting, documentation, and stakeholder communication skills.
  • Professional working proficiency in English; Mandarin Chinese is a plus.

Preferred Qualifications

  • Experience with threat hunting, threat intelligence analysis, or security automation/SOAR tools.
  • Exposure to cloud security environments such as Azure, AWS, or GCP.
  • Experience working with global or multinational security operations teams.
  • Relevant certifications such as Microsoft SC-200, GCIH, GCIA, CISSP, Security+, or Splunk Security certifications.

About Accenture

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with approximately 791,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.

Visit us at www.accenture.com 

Equal Employment Opportunity Statement

We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, military veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by applicable law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.

Similar Jobs

See all Remote Others jobs →

Personalize your Remote Job Search in 3 Easy Steps!

Discover remote opportunities in Others

Answer easy questions

Answer easy questions

200,000+ jobs across 15+ categories

Get your best job matches

Get your best job matches

Only hand-screened, legit jobs

Find a remote job faster

Find a remote job faster

No ads, scams, or junk

I was the first applicant for a remote marketing position that got listed on the company website the same day I applied. Had an interview within 48 hours!

Sarah J. — Sarah J. · Marketing Manager ★★★★★ Verified