SOC Analyst

About

Our client is looking for an experienced SOC Analyst to join a Cyber Operations team, focused on real-time monitoring, alert analysis, and threat triage within a large enterprise environment. This role is ideal for someone who enjoys investigative, analysis-driven work and thrives in a fast-paced security operations setting.

Location & Schedule

• Standard shift: 8:00 AM – 4:00 PM
• Typical schedules: Sunday–Thursday or Tuesday–Saturday

What You’ll Do

• Monitor security alerts and events in a 24x7 SOC environment using tools like Splunk, Microsoft Defender, and CrowdStrike
• Analyze alerts from dashboards, investigate suspicious activity, and determine appropriate response actions
• Triage and manage security incidents, including phishing and suspicious email analysis
• Open, document, and manage cases—escalating as needed and driving through to resolution
• Handle a high volume of alerts (typically 100–300/month depending on coverage area) with an expectation of consistent throughput (~1 case every 30 minutes)
• Collaborate with senior analysts and shift leads to ensure proper prioritization and response
• Contribute to maintaining operational readiness and improving detection and response processes

What You Bring

• 6+ years of experience in a SOC or cybersecurity operations environment
• Strong focus on alert analysis, triage, and investigative work (vs. purely engineering/technical builds)
• Hands-on experience with tools such as Splunk, Microsoft Defender, and/or CrowdStrike
• Experience working in a high-volume alert environment with the ability to prioritize effectively
• Solid understanding of security monitoring, threat detection, and escalation workflows
• Strong analytical and problem-solving skills, with attention to detail
• Ability to work under pressure and manage multiple investigations simultaneously

Nice to Have

• Experience in enterprise-scale security operations
• Familiarity with phishing analysis and email security investigations

This is a great opportunity to join a high-performing SOC team, gain exposure to a wide range of security events, and play a key role in protecting enterprise systems through hands-on investigation and analysis.