Security Operations Analyst

About The Position

Requirements

• 3+ years of progressive experience in Security Operations, with at least 2 years in a role contributing to a Security Operations Center (SOC), Managed Detection Response Service, or Incident Response team.
• Proven track record as an engineer, having designed, implemented, and managed mature SOC processes and automations.
• Proven hands-on technical expertise in threat detection, incident response, vulnerability management, and the use of SIEM, EDR/XDR, other security monitoring platforms, IAM solutions and processes.
• Strong understanding of modern security threats, attack vectors, and defensive strategies.
• Expertise in security frameworks (e.g., NIST, MITRE ATT&CK) and their practical application in threat detection, analysis, and incident response.
• Exceptional communication and interpersonal skills, with the ability to influence and effectively collaborate with technical and non-technical stakeholders at all levels, including executive leadership.
• Demonstrated ability to translate complex operational security incidents and risks into clear, actionable strategies and communicate effectively to diverse audiences.
• Bachelor's degree in Computer Science, Information Security, or a related technical field; Master's degree a plus.

Nice To Haves

• Relevant industry certifications highly preferred (e.g., CISSP, CISM, GCIH, GCIA, or OSCP).

Responsibilities

• Actively monitor SIEM, EDR/XDR, and other security tools to detect, analyze, and triage security alerts. Follow established playbooks to ensure timely and accurate initial response to potential threats.
• Utilize existing Security Orchestration, Automation, and Response (SOAR) platforms to handle alerts efficiently. Identify repetitive manual tasks and implement automations.
• Integrate and set up the ingestion of log sources to a SIEM tool, including the normalization of fields and data. Create timely monitoring solutions for relevant threats based on active threat intelligence. Share responsibility for detection and log lifecycle / maintenance.
• Consume and review daily threat intelligence feeds, security advisories, and industry alerts to ensure the company is protected against known Indicators of Compromise (IoCs) and emerging threat trends.
• Work closely with IT Operations to maintain accurate hardware and software asset inventories. Assist in deploying and troubleshooting endpoint security agents to ensure a secure baseline for all employee devices.
• Collaborate extensively with resources in Engineering, Product, IT, and other departments to embed operational security requirements, influence architectural decisions for detectability, and foster a strong security culture. Serve as the primary security technical expert for these partnerships.
• Assist in generating routine security metrics and operational reports. Help gather technical evidence to support adherence to security policies and compliance audits (e.g., SOC 2, ISO 27001).

Benefits

• Work from home with a remote-first community
• Unlimited PTO (and the encouragement to use it)
• Student loan payback program
• 100% employer-covered medical, dental, and vision options available to you and your dependents
• Flexible Spending Account (FSA)
• Monthly stipend toward your WFH setup, vacation, development and more
• Employer-sponsored 401(k) with contribution match
• Subsidized ClassPass Membership
• Generous Paid Parental Leave