Security Operations Center Analyst

About CYBERcom

We are a leading player in Israel’s cybersecurity ecosystem, operating a cutting-edge SOC that protects our clients with high-value, mission-critical environments. Our teams work hands-on with Cortex XSIAM and other advanced platforms, and automation frameworks - in real time, against real threats.

Whether it’s securing financial systems, cloud infrastructure, or global enterprise assets, we’re trusted by our clients to detect and respond with speed and precision.

We believe in promoting from within, mentoring, and enabling sharp minds to move fast, think deep, and become tomorrow’s cybersecurity leaders.

About the Role

We’re looking for skilled Arabic or Russian-speaking security analysts who have hands-on experience with real incident investigations and are eager to take their capabilities to the next level.

Self-learners with hands-on security experience are very welcome.

In this role, you’ll investigate real security incidents end-to-end, collaborate closely with senior analysts, and actively contribute to threat hunting, tuning, and the continuous improvement of our SOC operations.

What You’ll Do

• Monitor alerts and events using Cortex XSIAM and supporting detection tools.
• Take end-to-end ownership of security incidents - from initial detection to investigation, and escalation when needed.
• Help optimize detection logic and improve alert fidelity through hands-on tuning.
• Document your findings with clarity and precision - your reports drive response actions.
• Work in a rotating 24/7 shift model, with a structured team support environment.

What We’re Looking For

• Native Arabic or Russian speaker (reading, writing, speaking).
• Hands-on experience in a SOC or cybersecurity operations role (Military experience, such as Unit 8200, is welcome).
• Strong understanding of phishing, malware, MITRE ATT&CK, network security, and incident response workflows.
• Experience analyzing logs from endpoints, firewalls, WAFs, and cloud platforms.
• Hands-on experience with SIEM platforms - an advantage for working with Cortex XSIAM.
• Hands-on experience with EDR/XDR solutions - an advantage for working with Cortex XDR.
• Basic understanding of cloud concepts and familiarity with major cloud platforms (AWS, Azure, GCP).
• Advantage: Familiarity with scripting (Python, Regex), rules tuning, security automation, or playbook design.
• High attention to detail and a strong sense of curiosity.
• Ability to work effectively under pressure while prioritizing alerts in a fast-paced MSSP environment.
• Strong communication skills in Arabic, Russian, Hebrew, and English - both written and verbal.

Preferred Certifications (not mandatory, but a big plus):

• CompTIA Security+
• CySA+ (Cybersecurity Analyst)
• GCIA / GCIH (SANS)
• Palo Alto Networks Certified SOC Analyst (PCCSA / PCNSA)

🚀 Why You’ll Love It Here

• Work directly with senior analysts and detection engineers — learn by doing.
• Be part of an advanced MSSP team driving innovation in a Palo Alto XSIAM-powered SOC.
• Work with cutting-edge technologies and market-leading vendors.
• Thrive in a collaborative and inclusive environment committed to your professional growth.
• Strong team culture. Strong tech stack. Strong mission.

Equal Opportunity Statement

 CYBERcom is committed to fostering a diverse and inclusive workplace. We welcome applicants from all backgrounds and ensure equal opportunities for all.