Careers

SOC Analyst Engineer

Closing Date: Sep 30, 2026
Phnom Penh
  Hiring: 1

About the Role

A SOC Analyst Engineer is the "first line responder" of the cybersecurity world. The primary mission is to act as a high-speed filter: identifying real threats among thousands of daily alerts and ensuring critical issues reach senior investigators before damage occurs. This role is heavily governed by SLAs (Service Level Agreements), meaning speed and accuracy are the most critical performance metrics.

Key Responsibilities

  • Real-Time Alert Monitoring on SIEM (Security Information and Event Management) dashboards for triggered alarms across various client environments.
  • Reading and interpreting logs from Firewalls, EDR, Windows Event Viewer, and VPNs.
  • Initial investigating an alert to determine if it is a True Positive or a False Positive.
  • Following standard operating procedures (SOPs) to handle common, low-level threats (e.g., a single failed login attempt or a known-safe blocked file).
  • Providing a "warm hand-off" escalation to Tier 2 analysts when an incident is confirmed as high-risk or requires deep forensic investigation.
  • Vulnerability Scanning: Running scheduled scans to identify weak points in a client’s network and generating basic health reports.
  • Review vulnerability scan results and assist clients in prioritizing patches for critical assets.
  • Do other related tasks as assigned by the line manager.
  • Qualification & Experience

1. Educational Qualification

  • Bachelor’s degree in computer science, Information Technology, or equivalent military/practical experience.

2.  Professional Certifications

There should be at least one or two of the following certifications:

  • Foundational: CompTIA Security+ (The universal baseline).
  • Practical: Blue Team Level 1 (BTL1).
  • Cisco Certified CyberOps Associate (Focuses on actual SOC operations).
  • Specialized: CompTIA CySA+ (Focuses specifically on analysis and tool usage).
  • Vendor-Specific: Microsoft SC-200 (for Sentinel) or Splunk Core Certified User or Elastic SIEM Administration.

3.  Work Experience

  • 1 or 3 years in a SOC or Network Operations environment (High priority for candidates working in the IT solution company, service provider, …. Etc.)

4.   Technical Skills

  • Understanding the OSI Model, TCP/IP, DNS, and HTTP/HTTPS. You must know what "normal" traffic looks like to spot anomalies.
  • Ability to read and interpret logs from Windows (Event Viewer), Linux (syslog), Firewalls, EDR, and Web Servers.
  • Familiarity with platforms like IBM QRadar SIEM, Splunk, Microsoft Sentinel, or CrowdStrike Falcon SIEM. You don't need to be an expert, but you must know how to navigate the dashboard.
  • Understanding common attack vectors like Phishing, SQL Injection, Brute Force, and Ransomware.
  • High proficiency in Windows and a working knowledge of Linux command-line (e.g., grep, cat, ls, tail).
  • The Candidate should be familiar with:
  • MITRE ATT&CK: A global database of adversary tactics and techniques.
  • NIST Incident Response Framework: The standard steps for handling a breach (Preparation > Detection > Containment > Recovery).

Personal Attributes

  • Communication Skill
  • The ability to ask the right question, rather than just following a checklist.
  • Understanding that in a managed service, an alert must be acknowledged within a specific timeframe.
  • The ability to write clear, jargon-free notes so that a client or a Tier 2 analyst can understand exactly what happened.
Working Days and Hours
  • Monday to Half-Saturday: 8:00 a.m. – 12:00 p.m. & 1:00 p.m. – 5:00 p.m.
  • Lunch Break: 12:00 p.m. – 1:00 p.m.

Why Join First Cambodia

At First Cambodia, we believe that our people are our greatest asset. You’ll join a team of professionals who are shaping Cambodia’s digital future through innovation and world-class technology solutions.

Benefits & Perks:

  • Attractive & Competitive Salary— aligned with your experience and performance.
  • Profit-Sharing Bonus— rewarding dedication and contribution to company success.
  • Seniority Pay— 15 days per year, in line with Cambodian labor law.
  • Annual Salary Review — recognizing performance and commitment.
  • Insurance Coverage (NSSF) — ensuring health, social, and retirement protection.
  • Generous Leave Policy — 18 days of annual leave plus public holidays.
  • Paid Maternity Leave — 90 days with 100% pay.
  • Financial Assistance — for marriage, childbirth, and bereavement.
  • Healthy Work–Life Balance — supportive environment that values family, flexibility, and wellbeing.
  • Continuous Learning Opportunities — through training, workshops, and certification programs.
  • Annual Company Retreat & Team-Building Trips — to celebrate success and strengthen teamwork.
  • Positive & Supportive Culture — collaborative, inclusive, and purpose-driven.
🚀 Your next career move starts here — grow, learn, and lead with First Cambodia.

How to Apply

Interested candidates are invited to submit the following documents:

  • Updated resume (CV) with a brief cover letter and university transcript/GPA
  • Links to your professional profiles (e.g., LinkedIn and/or Facebook)
Please send your application through one of the following channels:

                📧 Email: [email protected]
        💬 Telegram: https://t.me/sreypich_sam
        📞 Contact: (+855) 23 961 222 / 011 545 084

✅ Join us and be part of Cambodia’s leading IT transformation journey!

NOTE: Only shortlisted candidates will be contacted.















Apply

Recent Jobs

Sales Executive

Product Manager-System

Internship Opportunity