Security Operations Center Analyst

IonQ, Inc. [NYSE: IONQ] is the world’s leading quantum platform and merchant supplier - delivering integrated quantum solutions across computing, networking, sensing, and security. IonQ’s newest generation of quantum computers, the IonQ Tempo, is the latest in a line of cutting-edge systems that have been helping customers and partners including Amazon Web Services, and AstraZeneca achieve 20x performance results and accelerate innovation in drug discovery, materials science, financial modeling, logistics, cybersecurity, and defense. In 2025, the company achieved 99.99% two-qubit gate fidelity, setting a world record in quantum computing performance.

Headquartered in College Park, Maryland, IonQ has operations in California, Colorado, Massachusetts, Tennessee, Washington, Italy, South Korea, Sweden, Switzerland, Canada, and the United Kingdom. Our quantum computing services are available through all major cloud providers, while we also meet the needs of networking and sensing customers across land, sea, air, and space. IonQ is making quantum platforms more accessible and impactful than ever before.  

As the leader in quantum technology and quantum infrastructure, we're expanding our security operations capability and looking for an SOC Analyst who is excited to help build and mature our detection and response function. You'll work in an environment that values collaboration, inclusivity, and great ideas — no matter where they come from. We promote teamwork, openness, and a culture where people are encouraged to share improvements and challenge the status quo in a constructive way.

In this role, you'll handle the full lifecycle of monitoring, analyzing, and responding to security events across our environment. You'll combine quick, effective triage with deeper investigations, threat hunting, and hands-on remediation. You'll also have opportunities to influence tooling, detections, processes, and personal development as our team grows.

• →Monitor SIEM, EDR, IDS/IPS, cloud security, and email security alerts for potential threats or abnormal activity.
• →Triage, validate, and investigate security alerts; identify false positives; escalate or resolve incidents as appropriate.
• →Perform in-depth analysis of suspicious activity and correlate logs across multiple systems to determine root cause, scope, and impact.
• →Execute containment and remediation actions such as host isolation, account lockdown, IOC blocking, vulnerability mitigation, and post-recovery validation.
• →Conduct proactive threat hunting based on threat intelligence, behavioral patterns, or hypothesis-driven analysis.
• →Support forensic data collection and examination (endpoint artifacts, system logs, cloud audit logs, etc.).
• →Analyze suspicious files, scripts, URLs, and domains using sandboxing, tooling, and threat intelligence sources.
• →Recommend and contribute to improvements in SIEM rules, detections, automation workflows, and security playbooks.
• →Participate in incident response activities, including documentation, communication with stakeholders, and post-incident reviews.
• →Monitor and maintain the health and accuracy of security tooling, connectors, and log ingestion pipelines.
• →Help improve security processes, policies, and standards as part of a growing team.
• →Maintain clear, organized case notes and produce reports when needed.
• →Opportunity to help shape a growing SOC and influence detection engineering, automation, and incident response processes.

• 1–3+ years of experience in a SOC, incident response, or security operations environment.
• Hands-on experience with SIEM, EDR, and cloud security tools (e.g., Microsoft Sentinel, Defender XDR, Splunk, CrowdStrike, etc.).
• Strong understanding of Windows, Linux, and/or macOS internals; identity security; authentication flows; and network fundamentals (TCP/IP, DNS, HTTP).
• Familiarity with threat landscape, threat intelligence workflows, and MITRE ATT&CK.
• Ability to write basic queries or scripts (KQL, SPL, PowerShell, Python, etc.).
• Analytical thinker with strong troubleshooting skills and a structured approach to incident handling.
• Clear communication skills and the ability to document technical findings concisely and accurately.
• A commitment to doing work the right way — following sound processes, documenting thoroughly, and maintaining a high standard for quality and security operations.
• A genuine desire to learn, grow, and continuously improve as the environment, tools, and challenges evolve.

• Experience with the Microsoft security stack (Sentinel, Defender for Endpoint/XDR, Entra ID Protection).
• Experience with threat hunting, detection tuning, or security automation.
• Certifications such as Security+, CySA+, SC-200, AZ-500, GCIH/GCED/GCIA, or equivalent.
• Experience working in fast-paced, high-growth tech environments.
  
  

• Occasional on-call rotation may be required depending on team structure.
• Background check required; clearance not required unless project-specific.
  
  

If you are interested in being a part of our team and mission, we encourage you to apply!