SOC Analyst

We are looking for a versatile SOC analyst to join the team and write, tune and respond to alerts covering the entire environment from endpoints to cloud infrastructure. This exciting opportunity empowers you to ensure the right alerts come in and you don’t burn out on false positives. We are a forward thinking organization that leverages AI. Your work would take place during regular business hours. Weekend coverage will be necessary. From time to time evenings as well. The expectation is that we build for 24x7 coverage but you will be asked to step in to assist the team.

• →Review and triage security alerts from a wide variety of sources across the organization
• →Carefully tune rules to reduce false positives
• →Write new rules to ensure appropriate MITRE ATT&CK framework coverage
• →Escalate potential incidents
• →Assist in any incident response activities
• →Ability to run projects from beginning to end
• →Work with Engineering and IT on visibility coverage and detection       

• 2+ years responding to alerts
• Familiar with MITRE ATT&CK framework
• Comfortable writing and tuning detection rules
• Experience triaging alerts and establishing if an event rises to an incident
• Varied exposure to a variety of application, SaaS, cloud and end point logs
• Strong communication skills towards technical and non-technical people
• Preference for people who have experienced a real life security incident that they detected                   

If you are interested in this opportunity, please apply with your resume and cover letter. We are an equal opportunity employer and welcome all qualified candidates to apply.