SOC Specialist Tier 1

Job description

About Snapp

Snapp is the pioneer provider of ride-hailing mobile solutions in Iran. It connects smartphone owners who need a ride to Snapp drivers who use their private cars, offering transportation services. We are ambitious, passionate, engaged, and excited about pushing the boundaries of the transportation industry to new frontiers and being the first choice of each user in Iran.

About the Role

As a SOC Tier1 Specialist in Snapp, you will be working on security log monitoring and analyzing, escalating, reporting, documenting, and more.


  • Monitoring security events on a real-time basis.
  • Handling security incidents in the least time.
  • Alarm Handling and Escalation.
  • Documentation and Reporting.
  • Supporting 7*24 Day/Night.
  • Checking all rotational monitoring system’s dashboards along the shift time and following IMP(Incident Management Process) during the incident time.
  • Active contribution to the planning and implementation phases of projects.


  • At Least two years of experience in the field of cybersecurity
  • Ability to work any shift pattern within the 24/7/365 operation, including days, nights, holidays, and weekends.
  • Familiarity and hands-on experience with Linux and Windows.
  • Network+, Secutiry+, CEH, SANS SEC504.
  • Experience with security solutions including SIEM, Anti-Virus, IDS, Firewalls, Active Directory, and large Enterprise or Cloud environments.
  • Experience with Incident Response, analysis of network traffic, log analysis, ability to prioritize and differentiate between potential intrusion attempts and false alarms, and managing and tracking investigations to resolution.
  • Strong ability to diagnose & triage alerts.
  • Familiar with at least one programming language (e.g., Python, GO, etc.).
  • Familiarity with RegEx.

  • Familiarity with one or more of the following:
  • NIST Incident Response Lifecycle.
  • Cyber Kill Chain.
  • Adversarial Tactics.
  • Techniques & Common Knowledge (ATT&CK).

  • Experience working in one of the following teams:
  • Computer Security Incident Response Team (CSIRT).
  • Computer Emergency Response Team (CERT).
  • Computer Security Incident Response Center (CIRC).
  • Security Operations Center (SOC).

Soft Skills:

  • Excellent time management and organizational skills, and ability to handle multiple concurrent tasks.
  • Good oral and written communication skills (In English & Farsi) and ability to address conflict with others constructively.
  • Fast learner.
  • Ability to complete tasks without oversight.