Security Operations Specialist

About The Position

Requirements

• 1-2 years of experience in system administration, IT, helpdesk or similar roles
• A strong interest in cybersecurity operations and a desire to learn across multiple security domains
• Foundational understanding of security concepts, such as networking, operating systems, authentication, and common attack techniques
• Familiarity with at least some security tooling or data sources (e.g., logs, alerts, endpoint telemetry), gained through coursework, labs, internships, or self‑study
• Analytical thinking skills and the ability to follow structured investigative processes
• Curiosity and persistence when researching unfamiliar behaviors or technologies
• Strong written and verbal communication skills, including clear documentation of findings
• Ability to work effectively in a team‑based, fast‑paced operational environment
• Bachelor’s degree in cybersecurity, computer science, information technology, or a related field — or equivalent practical experience

Nice To Haves

• Hands‑on experience from internships, labs, home projects, capture‑the‑flag (CTF) exercises, or security competitions
• Exposure to scripting or query languages (e.g., basic Python, PowerShell, KQL, SQL, or similar)
• Familiarity with attacker techniques or frameworks such as MITRE ATT&CK
• Demonstrated interest in threat hunting, detection engineering, or red teaming through self‑directed learning
• Strong documentation habits, including writing clear investigation notes or technical summaries
• A growth mindset and eagerness to rotate across different security functions before specializing
• Relevant entry‑level certifications (e.g., Security+, Blue Team Level 1, or similar), though not required

Responsibilities

• Monitoring and triaging security alerts across SIEM, EDR, email security, cloud, and identity platforms
• Performing initial analysis and investigation of security events, escalating incidents as appropriate
• Assisting with incident response activities, including evidence collection, timeline development, and documentation
• Supporting threat hunting efforts by executing queries, validating hypotheses, and documenting findings
• Contributing to detection engineering by testing, tuning, and helping maintain detection rules and alerts
• Assisting red team and purple team activities through log review, detection validation, and exercise support
• Supporting threat intelligence workflows, including indicator research, enrichment, and operationalization
• Participating in DLP and insider threat monitoring, helping identify potential data misuse or policy violations
• Documenting procedures, playbooks, and lessons learned to improve operational consistency
• Collaborating with engineering and operations teams to improve alert quality, visibility, and response outcomes
• Participating in on‑call or shift‑based SOC coverage as part of a team‑based rotation

Benefits

• Fair and competitive salary and incentive compensation packages with an upside for overachievement
• Generous paid time off, including vacation, personal days, sick days and annual community service days
• Flexible, hybrid work environment
• Health, dental and vision benefits, including access to telemedicine and mental health services
• 2:1 401(k) match, up to 8% match immediately upon hire
• Discounted Employee Stock Purchase Plan
• Tax Savings Accounts for health, dependent and transportation
• Employee referral bonus program
• Volunteer opportunities to help you give back to your communities
• Complimentary lunch, snacks and coffee in any Cboe office
• Paid Tuition assistance and education opportunities
• Generous charitable giving company match
• Paid parental leave and fertility benefits
• On-site gyms and discounts to other fitness centers