SOC Analyst - Azure

About The Position

Requirements

• Expert‑level understanding of SIEM, EDR/XDR, threat intelligence, and incident handling frameworks.
• Strong knowledge of attack techniques (MITRE ATT&CK), malware behavior, and detection engineering.
• Experience with cloud security operations (Azure Defender, M365 Defender, identity investigations).
• Hands‑on experience with digital forensics tools and log analysis.
• Relevant certifications preferred: GCIA, GCFA, GCIH, AZ‑500, SC‑200, CISSP.

Responsibilities

• Monitor, investigate, and respond to security events using SIEM/SOAR platforms (Microsoft Sentinel, Splunk, etc.).
• Conduct deep‑dive incident response activities: triage, containment, eradication, recovery, and post‑incident analysis.
• Lead threat hunting operations to proactively identify malicious activity across endpoints, cloud, and networks.
• Develop playbooks, automation workflows, and SOC processes for improved detection and response.
• Coordinate with engineering, cloud, and IT teams to remediate findings and strengthen security posture.
• Perform forensic analysis (endpoint, logs, network) and deliver root‑cause reports with actionable recommendations.

Benefits

• Paid time off based on employee grade (A-F), defined by policy: Vacation: 12-25 days, depending on grade, Company paid holidays, Personal Days, Sick Leave
• Medical, dental, and vision coverage (or provincial healthcare coordination in Canada)
• Retirement savings plans (e.g., 401(k) in the U.S., RRSP in Canada)
• Life and disability insurance
• Employee assistance programs
• Other benefits as provided by local policy and eligibility