SOC Analyst (Security Team)
AI Summary
SOC Analyst focusing on alert triage, detection tuning, and security monitoring across web platforms, data pipelines, and internal systems.
About this role
MEDIATECH
Mediatech is one of the fastest-growing digital publishing houses, reaching over 25 million people every month across Cybernews, Wellness Pulse, InvestorsObserver, and our wider network.
We deliver trusted, independently researched insights across tech, cybersecurity, health, and finance. Our investigations have exposed major security issues at NASA, WhatsApp, ChatGPT, PayPal, LinkedIn, and the Red Cross, and uncovered the largest-ever password leak (RockYou2024).
We’re a team driven by curiosity, impact, and fast growth - and we’re looking for people who want to build with us.
SECURITY TEAM
We build detections that matter. Our Security team protects web platforms, data pipelines, and internal systems by combining sharp monitoring, practical security engineering, and real collaboration with developers and infrastructure teams. We focus on visibility, meaningful alerts, and staying ahead of evolving threats.
YOU
You enjoy digging into alerts, separating noise from real threats, and improving detections so they actually work in practice. You’re comfortable with SIEM platforms, log analysis, and tuning rules, but you also think beyond the alert itself - understanding attacker behaviour, spotting gaps, and helping strengthen our overall security posture. Curious, hands-on, and detail-driven, you like security work that has real impact.
WHAT YOU’LL DO
Own alert triage and tuning: review alerts, reduce false positives, and improve detection quality through well-crafted rules and detection logic
Help build and shape our security monitoring function-contributing to detection strategy grounded in MITRE ATT&CK, not just day-to-day rule maintenance
Analyse alerts tied to website, tracking, and data pipelines-spot gaps, confirm incidents, and recommend fixes
Create and maintain detection logic (rules, decoders, thresholds) and supporting documentation
Operate SIEM manager/agents and work with log sources to ensure reliable telemetry
Build and maintain dashboards and reports to track alert health and detection coverage
Collaborate with developers, product and platform teams to validate detections and close the loop on remediation
Help automate routine investigation steps and alert enrichment with simple scripts or playbooks
Contribute to incident investigations when escalated, providing clear findings and suggested next steps
WHAT WE EXPECT
2+ years of experience in SOC, SecOps, security monitoring, or a similar hands-on security role
Practical experience with SIEM platforms, including alert tuning, rule creation, and log analysis
Understanding of MITRE ATT&CK and how to translate attacker techniques into effective detections
Familiarity with web technologies, tracking systems, and how activity appears across logs and telemetry
Confidence working with log parsing, regex, and search/analytics platforms during investigations
Basic scripting skills (Python, Bash, or similar) to automate repetitive tasks and enrich alerts
Strong analytical mindset with attention to detail and a methodical approach to investigations
Clear communication skills and ability to collaborate with engineers and non-security stakeholders
Curiosity, ownership, and willingness to continuously improve detection quality and monitoring capabilities
Experience with threat hunting or building detection playbooks would be a strong advantage
Exposure to cloud environments and SIEM ecosystem integrations is a plus
WHAT YOU GET
Health & Well-being – Private health insurance with mental health coverage (including psychotherapy sessions), in-house physiotherapy, and access to premium wellness apps and fitness resources.
Time to Recharge – Paid sick days and extra vacation days that grow the longer you’re with us.
Continuous Growth – Deep focus on individual progress, supported by the 70/20/10 development model and a wide range of L&D initiatives designed to boost performance throughout the year. You’ll have access to courses, conferences, books, subscriptions, and regular knowledge-sharing sessions to support ongoing learning.
Recognition & Support – Work anniversaries, celebrations for personal milestones such as birthdays, weddings, welcoming new family members, and more.
Community & Connection – Quarterly events to share knowledge, strengthen alignment, and foster collaboration across teams - plus company workations, wellness challenges, marathons, and other initiatives that bring people together in meaningful ways.
Workspace & Comfort – Work in a space built for focus, balance, and everything in between. At the CyberCity campus, you’re surrounded by a community of professionals and a modern infrastructure — from gyms and top coffee spots to popular restaurants just around the corner.
Step out for a walk, reset in game areas, grab a snack, or bring your pet along on Pet Thursday. Everything here is designed to help you feel good and do your best work.
Balanced Flexibility – A hybrid working model that supports both focused individual work and strong in-person collaboration. We offer flexibility to work remotely, combined with regular time in the office to connect, create, and align as a team.
We care deeply about our team. That’s why we focus on real benefits that support your growth, well-being, and life beyond work.
The future of media is now - be part of it.
At Mediatech, your ideas shape what’s next. Grow your skills, work with great people, and make something that matters.
GROSS SALARY
3200-4500 EUR/month. Salary offers are based on the candidate's experience. Keep in mind that we are open to discuss a different salary based on your skills and competencies.
