Keyrock

SOC Analyst, Level 2

Keyrock

full-time

Posted on:

Location Type: Remote

Location: CaliforniaFloridaUnited States

Visit company website

Explore more

AI Apply
Apply

Tech Stack

CloudServiceNowSplunk

About the role

  • Take escalations from L1 and independently investigate complex, multi-signal alerts (identity compromise, cloud control-plane abuse, endpoint persistence, lateral movement, suspicious automation, data exfiltration).
  • Perform deep log/telemetry analysis across SIEM, EDR, cloud logs, IAM signals, network telemetry, email security, and SaaS audit trails.
  • Build and validate hypotheses, pivot across data sources, and produce clear incident timelines and scope assessments.
  • Serve as technical incident lead for defined incident types/severities (or co-lead with IR), driving containment and eradication steps within authorized bounds.
  • Execute and improve response playbooks for key scenarios (phishing/BEC, credential theft, token/key compromise, suspicious API activity, ransomware indicators, insider risk signals).

Requirements

  • 2–5+ years of SOC / incident response / security operations experience (or equivalent hands-on experience in a fast-paced production environment).
  • Strong ability to investigate across cloud security operations, endpoint security, identity, and core network fundamentals.
  • Proficiency with at least one SIEM and common SOC tooling (e.g., Splunk/Elastic/Sentinel; CrowdStrike/Defender; Jira/ServiceNow).
  • Ability to write clear incident documentation: timelines, scope, impact, containment actions, and recommended remediations.
  • Comfort operating in an on-call or shift environment (depending on coverage model).
Benefits
  • Remote work options
  • Professional development opportunities
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
log analysistelemetry analysisincident responsecloud security operationsendpoint securityidentity managementnetwork fundamentalsincident documentationresponse playbooksdata exfiltration
Soft Skills
investigative skillscommunicationleadershipproblem-solvingattention to detail