Junior Security Operations Center (SOC) Analyst

About The Position

Requirements

• A foundational background in information technology or cybersecurity gained through hands-on experience, personal labs, coursework, certifications, internships, or related IT roles.
• Willingness and availability to work in a 24/7 rotational shift environment, including morning, afternoon, and overnight shifts.
• 0–2 years of relevant experience in IT support, help desk, system administration, network operations, or security operations (academic labs and internships count).
• Strong attention to detail with the ability to follow documented procedures and accurate document findings.
• Solid analytical thinking skills and the ability to assess alerts, identify patterns, and determine when escalation is appropriate.
• Clear written and verbal communication skills, especially for ticket documentation and shift handovers.
• Foundational understanding of: Networking concepts (TCP/IP, ports, and protocols).
• Core security principles (firewalls, phishing, malware, endpoint protection).
• Basic cloud concepts and security fundamentals (AWS, Azure).
• A strong desire to grow in cybersecurity and develop hands-on experience with SIEM, EDR, and SOAR tools in a managed security services environment.

Nice To Haves

• Exposure to cloud platforms such as AWS, Azure, or GCP is a plus.
• Preferred but not required: Entry-level certifications such as CompTIA Security+, Network+, or equivalent foundational credentials

Responsibilities

• Act as the first line of defense by continuously monitoring alerts generated from security alerts across SIEM, EDR, cloud, and email security platforms.
• Perform initial triage of alerts by validating alerts based on security tool–assigned priority and assessing relevant alert context to support escalation.
• Follow documented Standard Operating Procedures (SOPs) to investigate, validate, and
• Escalate all validated security incidents and suspicious activity to L2 Analysts for deeper investigation and response.
• Accurately document triage steps, findings, and communications in the incident management and ticketing system.
• Leverage pre-built security automation and response playbooks (SOAR) that enrich alerts with threat intelligence and contextual data.
• Use core security tools to gather initial investigative data (e.g., identity logs, EDR telemetry, domain, and IP reputation checks).

Benefits

• Start-up company in a growth phase with opportunity for advancement based on performance
• Start-up culture with an office in downtown Salt Lake City, UT
• Competitive medical and dental benefits for employee and family members
• Other company-provided benefits such as short-term disability, basic life insurance, children’s orthodontia, with additional voluntary benefits available, and 401K match
• Flexible Paid Time Off policy
• Professional Development opportunities specific to role