Job description

Senior Specialist - Security Operations at Space42 responsible for supporting Security Operations Center (SOC) and Threat Intelligence functions by monitoring, detecting, analyzing, and responding to cyber threats targeting enterprise systems. The role operates within an AI-powered SpaceTech environment integrating satellite communications, geospatial analytics, and artificial intelligence capabilities. The position involves advanced threat intelligence, intrusion analysis, malware reverse engineering, and proactive security operations to strengthen cyber defense capabilities across large-scale enterprise infrastructure. Responsibilities include monitoring SIEM, EDR, and NDR tools, performing incident triage, containment, eradication, and recovery, correlating logs from network, endpoint, cloud, and application sources, and managing SIEM use cases and alert tuning. The role conducts digital forensics, post-incident analysis, and maintains incident documentation aligned with regulatory requirements while coordinating with internal and external stakeholders. The Senior Specialist analyzes network telemetry, endpoint logs, threat feeds, correlates Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs), and conducts proactive threat hunting. The role includes malware analysis and reverse engineering using Ghidra, IDA Pro, x64dbg, and Cuckoo Sandbox, developing YARA rules and behavioral signatures, maintaining malware repositories, and supporting detection engineering improvements. The position requires experience with Defender EDR, Darktrace NDR, Tenable vulnerability management, scripting using Python, PowerShell, and Bash, and knowledge of STIX/TAXII, OpenIOC, Sigma, and Snort. The role also involves integrating threat intelligence into SOC workflows, building detection use cases, and supporting enterprise-level cybersecurity operations.