Senior SOC Engineer
CVS HealthSalary not specified
Full Time
Senior (5 to 8 years)
€103,150 – €133,650Compensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
CybersecurityIndustries
Requirements
Candidates should have 6+ years of experience in a SOC, Incident Response, or Forensics role. They must possess the ability to explain complex alerts and events clearly, both verbally and in writing. Proven mentoring experience and skills for junior team members are essential. A strong understanding of Malware Analysis, including isolated VM configuration, file format identification, and basic static/dynamic analysis, is required. Demonstrated experience with Windows and/or MacOS as an attack surface, along with a strong understanding of Threat Actor Tools and techniques such as the MITRE ATT&CK Framework, PowerShell, Command Prompt, WMIC, Scheduled Tasks, SCM, Windows Domain and host Enumeration Techniques, Basic Lateral Movement Techniques, Basic Persistence Mechanisms, and Basic Defense Evasion, is also necessary.
Responsibilities
The Principal Security Operations Analyst will triage, investigate, respond to, and remediate intrusions daily. Responsibilities include serving as the lead liaison between the SOC and other Product and Research teams, building automation through report template creation to reduce SOC workload, and owning and completing investigative objectives for multi-host intrusions independently. The role involves performing tactical forensic analysis to determine attack root causes and provide remediations, conducting advanced malware analysis, investigating suspicious Microsoft M365 activity, and assisting with escalations from the product support team. Additionally, the analyst will engage with customers when needed to explain observed activity, contribute to detection efforts by creating or requesting new detections and tuning existing ones, provide technical mentorship to junior team members, and contribute to external content such as blogs and webinars.
Skills
incident response
triage
investigation
remediation
mentoring
leadership
SOC operations
Huntress
Managed endpoint detection and response services
About Huntress
Huntress provides managed endpoint detection and response (EDR) services to protect businesses from cyber threats, particularly ransomware. Their service includes 24/7 monitoring of clients' systems to identify potential cyberattacks. When a threat is detected, their team of security experts verifies the activity and alerts the client only if necessary, reducing the number of false positives that can occur with other services. In addition to threat hunting, Huntress offers security awareness training and resources like eBooks and webinars to educate employees about cybersecurity risks. Their commitment to high customer support and personalized reporting distinguishes them from competitors in the cybersecurity field. The goal of Huntress is to enhance the security posture of businesses by providing effective monitoring and education against cyber threats.
Columbia, MarylandHeadquarters
2015Year Founded
$281.8MTotal Funding
SERIES_DCompany Stage
CybersecurityIndustries
501-1,000Employees
Benefits
100% remote work environment
Generous PTO including vacation, sick time, and paid holidays
12 weeks paid parental leave
Highly competitive and comprehensive medical, dental, and vision benefits plans
401(k) with 5% contribution regardless of employee contribution
Life and Disability insurance plans
Stock options for all full-time employees
One-time $500 stipend to build/upgrade home office
Annual allowance for education and professional development assistance
$75 USD/month digital reimbursement
Access to both Udemy and BetterUp platforms for coaching, personal, and professional growth
Risks
Exploitation of security flaws in data transfer tools could affect Huntress's clients.
Social engineering attacks may bypass AI security measures, posing a risk to Huntress.
Difficulty in finding specialized talent could hinder Huntress's expansion efforts.
Differentiation
Huntress offers a 24/7 Security Operations Center for continuous threat monitoring.
The company integrates with Microsoft 365, enhancing security for businesses using Microsoft tools.
Huntress eliminates false positives by verifying threats before alerting clients.
Upsides
Huntress raised $180 million to expand and accelerate product development.
Recognition in Inc.'s Power Partner Awards boosts Huntress's market credibility.
Increased demand for cybersecurity due to remote work benefits Huntress's growth.
Related Jobs
RemoteRemoteSecurity Operations Lead
EarnestSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemotePrincipal Consultant, Cloud Incident Response (Remote)
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteThreat Hunter (Remote, West Coast)
CrowdstrikeSalary not specified
- Full Time
- Entry Level & New Grad
RemoteStaff Security Engineer (Forensic Engineer), Remote
AledadeSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteShape the Future of AI - Irish Talent Hub
WelocalizeSalary not specified
- Part Time
- Entry Level & New Grad
RemoteSenior SOC Security Engineer
CalendlySalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteInsider Risk Analyst, Personnel Security (Remote)
CrowdstrikeSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSecurity Researcher - Malware Reverse Engineer (Remote)
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Consultant, Cloud Incident Response (Remote)
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteThreat Intelligence Analyst
VultrSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSecurity Operations Engineer
TailscaleSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)