Home › Companies › Integrity360 › L3 SOC Analyst - Dublin
L3 SOC Analyst - Dublin
Integrity360 · Dublin, Dublin, D18 T6T7, Ireland · Active · BambooHR
Job facts
| Field | Value |
|---|---|
| Company | Integrity360 |
| Title | L3 SOC Analyst - Dublin |
| Normalized title | - |
| Department / team | MSS |
| Location | Dublin, Dublin |
| Work model | - |
| Employment type | Engagement Employee |
| Salary | - |
| Status | active |
| ATS provider | BambooHR |
| Posted / first seen | 2026-05-13 / 2026-05-30 |
| Changed / last seen | 2026-05-30 / 2026-06-04 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Integrity360. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through BambooHR. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Dublin. | Open |
| Department jobs | Active postings in MSS. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Integrity360 |
| Source | e762bb0f-125a-44bb-b9e6-ed19d1fd1b71 |
| ATS provider | BambooHR |
Description
About Us
Integrity360 is a leading independent cybersecurity and PCI specialist operating across Europe, Africa, the Caribbean, and North America. The company has office locations in Ireland, the UK, Bulgaria, Italy, Sweden, Spain, Lithuania, Ukraine, Africa, the Caribbean, and Canada, supported by six Security Operations Centres (SOCs) located in Dublin, Sofia, Madrid, Stockholm, Rome, and Cape Town.
With over 780 employees, including more than 585 dedicated cybersecurity professionals, Integrity360 delivers a full suite of professional, support, and managed security services. These span the complete cyber risk lifecycle, from identification and prevention to detection, response, and recovery. Integrity360 supports over 3000 mid-market and enterprise organisations across sectors including financial services, insurance, government, healthcare, retail, telecommunications, and utilities.
At Integrity360, people come first. We invest heavily in learning, development and progression, fostering a dynamic culture where innovation, collaboration and continuous growth are at the heart of what we do. If you're ready to take your cyber security career to the next level, we’d love to hear from you.
Job Role / Responsibilities
In this role, you will act as a Level 3 escalation point within the MDR/SOC function, providing advanced technical support to Level 2 analysts during complex or high-severity investigations. You will be expected to bring deep operational knowledge across modern security technologies, including SIEM, EDR, Network Intrusion Detection Systems, SOAR, DLP and related security monitoring platforms.
The Principal SOC Analyst will support the investigation, containment and remediation of advanced threats, ensuring that incidents are analysed in the correct business and technical context. The role requires strong hands-on experience in security operations, incident response, threat analysis and detection tuning, as well as the ability to work directly with customers and internal stakeholders to improve detection capability and strengthen cyber security posture.
You will contribute to the continuous improvement of the MDR service by supporting the definition of security monitoring strategies, improving detection logic, tuning security technologies, reviewing investigation processes and advising customers on technical optimisation opportunities. A strong understanding of malware behaviour, adversary tactics, techniques and procedures, and emerging threats will be critical to success.
Primary Duties/Responsibilities include:
Act as the Level 3 escalation point for advanced, complex or high-impact security investigations.
Support Level 2 analysts during complex investigations, providing technical guidance, validation and direction.
Perform in-depth analysis of security events, alerts, logs, endpoint telemetry, network traffic and other relevant data sources.
Lead advanced incident investigations, including scoping, containment, eradication and remediation recommendations.
Analyse malicious activity, suspicious files, attacker behaviour and adversary TTPs.
Support customers from a technical perspective in the optimisation, tuning and improvement of their security monitoring capabilities.
Review and improve SIEM, EDR, NIDS, SOAR and other security tool configurations to reduce false positives and improve detection quality.
Contribute to the development and refinement of detection use cases, correlation rules, alerting logic and investigation playbooks.
Support the definition of customer security monitoring strategies based on risk profile, threat landscape and available telemetry.
Provide technical recommendations to strengthen customer cyber security posture and improve resilience against current and emerging threats.
Conduct threat hunting and proactive analysis based on indicators, behaviours, intelligence and attack patterns.
Document investigation findings, evidence, timelines, containment actions and remediation recommendations in a clear and structured manner.
Prepare and deliver technical reports to customers, partners and internal stakeholders.
Monitor trusted sources for emerging threats, vulnerabilities and adversary activity relevant to customer environments.
Contribute to the continuous improvement of SOC processes, procedures, documentation and knowledge base material.
Support mentoring and technical development of Level 1 and Level 2 analysts where required.
Desired Skills
Strong hands-on experience in Security Operations Centre or MDR environments.
Deep operational knowledge of SIEM, EDR, Network Intrusion Detection Systems, SOAR, DLP and related security monitoring technologies.
Strong experience with security event triage, correlation, investigation and escalation.
Ability to analyse endpoint, network, identity, cloud and application telemetry in support of complex investigations.
Experience with SIEM query languages and detection logic, such as KQL, SPL, Sigma or equivalent.
Experience tuning security controls and detection content to improve alert fidelity and reduce false positives.
Strong understanding of attacker tactics, techniques and procedures, including MITRE ATT&CK.
Ability to perform host-based and network-based threat analysis.
Experience analysing packet captures, endpoint artefacts, logs, scripts, documents and potentially malicious files.
Strong understanding of incident response lifecycle, including preparation, identification, containment, eradication, recovery and lessons learned.
Strong understanding of enterprise network architecture, TCP/IP, firewalls, proxies, VPNs, DNS, email security and cloud environments.
Understanding of security protocols, encryption technologies and common authentication mechanisms.
Experience supporting customer-facing technical discussions, including investigation reviews, tuning recommendations and posture improvement activities.
Ability to manage multiple complex incidents and make effective decisions under pressure.
Strong written and verbal communication skills, with the ability to explain technical findings to both technical and non-technical stakeholders.
Experience with Microsoft Sentinel, Microsoft Defender, Splunk, QRadar, CrowdStrike, SentinelOne, Palo Alto, Suricata, Zeek, Snort or similar technologies is highly beneficial.
Experience with cloud security monitoring across Microsoft Azure, AWS or Google Cloud is beneficial.
Experience with threat hunting, detection engineering or purple team activities is beneficial.
Ability to produce clear technical documentation, investigation reports and customer-facing recommendations.
Certifications/Qualifications
Security industry certifications such as GCIH, GCFA, GCIA, GNFA, GCTI, GSEC, CISSP, CySA+, SC-200, AZ-500 or equivalent are highly beneficial.
Minimum 2–3 years of experience in a SOC, MDR, incident response, CSIRT or cyber security operations role.
Proven experience handling complex security incidents and supporting advanced investigations.
Working knowledge of SIEM, EDR, SOAR, NIDS, DLP and threat intelligence platforms.
Experience working with threat hunting methodologies and security detection frameworks.
Experience supporting customers or internal stakeholders with security optimization, detection tuning and cyber security posture improvement. #LI-JL1
Full job record
| Job ID | 3e89d4845cee8aa7f06872c82ff1b2bc337a93a2 |
| Org ID | def884fc-1ce0-40c7-961b-167fc5ccbb59 |
| Source ID | e762bb0f-125a-44bb-b9e6-ed19d1fd1b71 |
| Board ID | e762bb0f-125a-44bb-b9e6-ed19d1fd1b71 |
| Provider | bamboohr |
| Provider Job Key | 702 |
| Title | L3 SOC Analyst - Dublin |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Dublin, Dublin, D18 T6T7, Ireland |
| Department | MSS |
| Team | — |
| Employment Type | Engagement - Employee |
| Workplace Type | — |
| Remote Policy | — |
| Country | — |
| Region | Dublin |
| City | Dublin |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://integrity360.bamboohr.com/careers/702 |
| Apply URL | https://integrity360.bamboohr.com/careers/702 |
| First Seen At | 2026-05-30 06:11:13Z |
| Last Seen At | 2026-06-04 11:43:57Z |
| Last Checked At | 2026-06-04 11:43:57Z |
| Last Changed At | 2026-05-30 06:11:13Z |
| Inactive At | — |
| Source Posted At | 2026-05-13 00:00:00Z |
| Source Updated At | — |
| Raw Payload Uri | s3://bluework-jobs-prod-raw-590183727216/raw/provider=bamboohr/board=integrity360/date=2026-06-04/2026-06-04T11-43-52-556Z-3b43d80985290841c888493929a5e57ff159afd41cd05e47ae08c37df0ece9b5.json |
Event Fields
{
"content_hash": "70fa577daa87c3ef13069559d7e56f692fd19fde92bb311b41ec43ad8312d5fc",
"source_hash": "e2cbeabf52a4f8e8b290858b4120925f41249801563ec878148056d73eb12e4c",
"last_changed_at": "2026-05-30T06:11:13.337Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Dublin, Dublin, D18 T6T7, Ireland",
"city": "Dublin",
"region": "Dublin",
"country": null,
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-04T11:43:57.689Z",
"launch_scope": {
"reason": "bamboohr_production_catalog",
"included": true,
"location": {
"raw": "Dublin, Dublin, D18 T6T7, Ireland",
"city": "Dublin",
"region": "Dublin",
"country": null,
"is_remote": false,
"confidence": 0.8
},
"countries": []
},
"remote_policy": null,
"salary_period": null,
"workplace_type": null,
"salary_currency": null
}Extensions
{}Native Structured
{
"list_job": {
"id": "702",
"isRemote": null,
"location": {
"city": "Dublin",
"state": "Dublin"
},
"atsLocation": {
"city": null,
"state": null,
"country": null,
"province": null
},
"departmentId": "19214",
"locationType": "0",
"jobOpeningName": "L3 SOC Analyst - Dublin",
"departmentLabel": "MSS",
"employmentStatusLabel": "Engagement - Employee"
},
"detail_errors": [],
"detail_job_opening": {
"location": {
"city": "Dublin",
"state": "Dublin",
"postalCode": "D18 T6T7",
"addressCountry": "Ireland"
},
"datePosted": "2026-05-13",
"atsLocation": {
"city": null,
"state": null,
"country": null,
"countryId": null
},
"description": "<p><span style=\"font-family: Inter, sans-serif; font-size: 12pt; font-weight: bold\">About Us</span></p>\n<p><br></p>\n<p>Integrity360 is a leading independent cybersecurity and PCI specialist operating across Europe, Africa, the Caribbean, and North America. The company has office locations in Ireland, the UK, Bulgaria, Italy, Sweden, Spain, Lithuania, Ukraine, Africa, the Caribbean, and Canada, supported by six Security Operations Centres (SOCs) located in Dublin, Sofia, Madrid, Stockholm, Rome, and Cape Town.</p>\n<p><br></p>\n<p>With over 780 employees, including more than 585 dedicated cybersecurity professionals, Integrity360 delivers a full suite of professional, support, and managed security services. These span the complete cyber risk lifecycle, from identification and prevention to detection, response, and recovery. Integrity360 supports over 3000 mid-market and enterprise organisations across sectors including financial services, insurance, government, healthcare, retail, telecommunications, and utilities.</p>\n<p><br></p>\n<p>At Integrity360, people come first. We invest heavily in learning, development and progression, fostering a dynamic culture where innovation, collaboration and continuous growth are at the heart of what we do. If you're ready to take your cyber security career to the next level, we’d love to hear from you. </p>\n<p><br></p>\n<p><span style=\"font-family: Inter, sans-serif; font-size: 12pt; font-weight: bold\">Job Role / Responsibilities</span></p>\n<p><br></p>\n<p><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">In this role, you will act as a Level 3 escalation point within the MDR/SOC function, providing advanced technical support to Level 2 analysts during complex or high-severity investigations. You will be expected to bring deep operational knowledge across modern security technologies, including SIEM, EDR, Network Intrusion Detection Systems, SOAR, DLP and related security monitoring platforms.</span><br><br><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">The Principal SOC Analyst will support the investigation, containment and remediation of advanced threats, ensuring that incidents are analysed in the correct business and technical context. The role requires strong hands-on experience in security operations, incident response, threat analysis and detection tuning, as well as the ability to work directly with customers and internal stakeholders to improve detection capability and strengthen cyber security posture.</span><br><br><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">You will contribute to the continuous improvement of the MDR service by supporting the definition of security monitoring strategies, improving detection logic, tuning security technologies, reviewing investigation processes and advising customers on technical optimisation opportunities. A strong understanding of malware behaviour, adversary tactics, techniques and procedures, and emerging threats will be critical to success.</span></p>\n<p><span style=\"font-family: Inter, sans-serif; font-size: 12pt\"> </span></p>\n<p><br></p>\n<p><span style=\"font-family: Inter, sans-serif; font-size: 12pt; font-weight: bold\">Primary Duties/Responsibilities include:</span></p>\n<ul>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Act as the Level 3 escalation point for advanced, complex or high-impact security investigations.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Support Level 2 analysts during complex investigations, providing technical guidance, validation and direction.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Perform in-depth analysis of security events, alerts, logs, endpoint telemetry, network traffic and other relevant data sources.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Lead advanced incident investigations, including scoping, containment, eradication and remediation recommendations.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Analyse malicious activity, suspicious files, attacker behaviour and adversary TTPs.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Support customers from a technical perspective in the optimisation, tuning and improvement of their security monitoring capabilities.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Review and improve SIEM, EDR, NIDS, SOAR and other security tool configurations to reduce false positives and improve detection quality.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Contribute to the development and refinement of detection use cases, correlation rules, alerting logic and investigation playbooks.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Support the definition of customer security monitoring strategies based on risk profile, threat landscape and available telemetry.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Provide technical recommendations to strengthen customer cyber security posture and improve resilience against current and emerging threats.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Conduct threat hunting and proactive analysis based on indicators, behaviours, intelligence and attack patterns.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Document investigation findings, evidence, timelines, containment actions and remediation recommendations in a clear and structured manner.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Prepare and deliver technical reports to customers, partners and internal stakeholders.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Monitor trusted sources for emerging threats, vulnerabilities and adversary activity relevant to customer environments.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Contribute to the continuous improvement of SOC processes, procedures, documentation and knowledge base material.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Support mentoring and technical development of Level 1 and Level 2 analysts where required.</span></li>\n</ul>\n<p><span style=\"font-family: Inter, sans-serif; font-size: 12pt\"> </span></p>\n<p><span style=\"font-family: Inter, sans-serif; font-size: 12pt; font-weight: bold\">Desired Skills</span></p>\n<ul>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Strong hands-on experience in Security Operations Centre or MDR environments.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Deep operational knowledge of SIEM, EDR, Network Intrusion Detection Systems, SOAR, DLP and related security monitoring technologies.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Strong experience with security event triage, correlation, investigation and escalation.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Ability to analyse endpoint, network, identity, cloud and application telemetry in support of complex investigations.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Experience with SIEM query languages and detection logic, such as KQL, SPL, Sigma or equivalent.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Experience tuning security controls and detection content to improve alert fidelity and reduce false positives.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Strong understanding of attacker tactics, techniques and procedures, including MITRE ATT&CK.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Ability to perform host-based and network-based threat analysis.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Experience analysing packet captures, endpoint artefacts, logs, scripts, documents and potentially malicious files.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Strong understanding of incident response lifecycle, including preparation, identification, containment, eradication, recovery and lessons learned.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Strong understanding of enterprise network architecture, TCP/IP, firewalls, proxies, VPNs, DNS, email security and cloud environments.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Understanding of security protocols, encryption technologies and common authentication mechanisms.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Experience supporting customer-facing technical discussions, including investigation reviews, tuning recommendations and posture improvement activities.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Ability to manage multiple complex incidents and make effective decisions under pressure.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Strong written and verbal communication skills, with the ability to explain technical findings to both technical and non-technical stakeholders.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Experience with Microsoft Sentinel, Microsoft Defender, Splunk, QRadar, CrowdStrike, SentinelOne, Palo Alto, Suricata, Zeek, Snort or similar technologies is highly beneficial.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Experience with cloud security monitoring across Microsoft Azure, AWS or Google Cloud is beneficial.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Experience with threat hunting, detection engineering or purple team activities is beneficial.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Ability to produce clear technical documentation, investigation reports and customer-facing recommendations.</span></li>\n</ul>\n<p><span style=\"font-family: Inter, sans-serif; font-size: 12pt\"> </span></p>\n<p><span style=\"font-family: Inter, sans-serif; font-size: 12pt; font-weight: bold\">Certifications/Qualifications</span></p>\n<ul>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Security industry certifications such as GCIH, GCFA, GCIA, GNFA, GCTI, GSEC, CISSP, CySA+, SC-200, AZ-500 or equivalent are highly beneficial.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Minimum 2–3 years of experience in a SOC, MDR, incident response, CSIRT or cyber security operations role.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Proven experience handling complex security incidents and supporting advanced investigations.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Working knowledge of SIEM, EDR, SOAR, NIDS, DLP and threat intelligence platforms.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Experience working with threat hunting methodologies and security detection frameworks.</span></li>\n<li><span style=\"font-family: Inter, sans-serif; font-size: 12pt\">Experience supporting customers or internal stakeholders with security optimization, detection tuning and cyber security posture improvement.</span>#LI-JL1</li>\n</ul>",
"compensation": null,
"departmentId": "19214",
"locationType": "0",
"seekPromoted": false,
"jobCategoryId": null,
"jobOpeningName": "L3 SOC Analyst - Dublin",
"departmentLabel": "MSS",
"jobOpeningStatus": "Open",
"minimumExperience": null,
"jobOpeningShareUrl": "https://integrity360.bamboohr.com/careers/702",
"employmentStatusLabel": "Engagement - Employee"
}
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/3e89d4845cee8aa7f06872c82ff1b2bc337a93a2?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/def884fc-1ce0-40c7-961b-167fc5ccbb59JSONGET https://api.bluedoor.sh/job-postings/v1/sources/e762bb0f-125a-44bb-b9e6-ed19d1fd1b71JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/3e89d4845cee8aa7f06872c82ff1b2bc337a93a2/eventsJSON