Advanced Threat Detection and Response: Monitor and analyze security alerts and incidents, conduct in-depth investigations, and respond to complex security threats, ensuring they are mitigated effectively.
Incident Management: Take the lead in managing security incidents, coordinating with other IT and security teams to contain, eradicate, and recover from security breaches.
Forensic Analysis: Perform detailed forensic analysis on compromised systems to identify root causes, attack vectors, and indicators of compromise (IOCs).
Vulnerability Management: Assist in the identification, assessment, and remediation of vulnerabilities within the organization’s infrastructure.
Security Tool Management: Maintain and optimize security tools and technologies, including SIEM, IDS/IPS, firewalls, and endpoint protection systems.
Collaboration: Work closely with Level 1 SOC Engineers, providing guidance, mentorship, and training to help them improve their skills and effectiveness in responding to security incidents.
Documentation: Create and maintain detailed documentation of security incidents, forensic analysis, and response actions, ensuring compliance with organizational policies and industry standards.
Reporting: Generate and analyze security reports, providing insights and recommendations to improve the organization’s security posture.
Continuous Improvement: Stay updated on the latest cybersecurity threats, vulnerabilities, and best practices, and contribute to the ongoing improvement of SOC processes and technologies.
On-Call Support: Participate in a rotating on-call schedule to provide after-hours support for critical security incidents.

Requirements

Education: Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field, or equivalent experience.
Experience: 3-5 years of experience in a SOC or cybersecurity role, with at least 1-2 years at a Level 2 position or equivalent.
Certifications: Relevant certifications such as CompTIA Security+, CompTIA CySA+, or equivalent are preferred.
Proven expertise in security monitoring tools (e.g., SIEM, IDS/IPS) and their configuration and management.
Proficiency in network security, endpoint security, and incident response techniques.
Experience with forensic tools and methodologies for analyzing compromised systems.
Familiarity with scripting and automation (e.g., Python, PowerShell) to streamline security processes.
Knowledge of cloud security practices and tools (e.g., AWS, Azure) is a plus.

Benefits

Competitive compensation
Health Insurance (medical, vision, dental), 80% covered for employee-only plans and 75% covered for employee-spouse, employee-kids, and employee-family plans
Flexible Spending Account (FSA)
Health Savings Account (HSA)
Employee Assistance Program (EAP)
Retirement Plan (401(k)) with company match
Commuter Benefits
Short-Term Disability Insurance fully paid by the company
Long-Term Disability Insurance fully paid by the company
Life and AD&D Insurance, with optional Supplemental Life Insurance
Paid Time Off, including Paid Parental Leave
10 Holidays
2 Floating Holidays

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

advanced threat detectionincident managementforensic analysisvulnerability managementsecurity monitoringnetwork securityendpoint securityincident responsescriptingautomation

Soft Skills

collaborationmentorshipdocumentationreportingcontinuous improvement

Certifications

CompTIA Security+CompTIA CySA+