SOC Analyst

We are looking for a versatile SOC Analyst to join the team and write, tune and respond to alerts covering the entire environment from endpoints to cloud infrastructure. This exciting opportunity empowers you to ensure the right alerts come in and you don’t burn out on false positives. Your work would take place during regular business hours. Weekend coverage will be necessary. From time to time evenings as well. The expectation is that we build for 24x7 coverage but you will be asked to step in to assist the team.

• →Review and triage security alerts from a wide variety of sources
• →Carefully tune rules to reduce false positives
• →Write new rules to ensure appropriate MITRE ATT&CK framework coverage
• →Escalate potential incidents
• →Assist in any incident response activities
• →Run projects from beginning to end to level up security monitoring
• →Work with Engineering and IT on visibility coverage and detection 

We are looking for teammates who share and practice our values: open communication, transparency, taking ownership, and a high level of craftsmanship. We are looking for coworkers who share our vision and mission: deliver trust in digital assets. 

• 4+ years responding to alerts and similar role
• Familiar with MITRE ATT&CK framework
• Comfortable writing and tuning detection rules
• Experience triaging alerts and establishing if an event rises to an incident
• Varied exposure to a variety of application, SaaS, cloud and end-point logs
• Strong communication skills towards technical and non-technical people
• Preference for people who have experienced a real-life security incident that they detected