Haystack
← Back to Jobs
Technology

SOC Analyst

UnivEdge Consulting LLCUnited States🇺🇸United StatesPosted 17 Jul 2026

Quick Overview

Work Type
Hybrid
Level
Mid Senior

Job Description

Job Title: SOC Analyst

Location: US, Remote

Job Summary

We are seeking a skilled and proactive SOC Analyst with 5-8 years of experience in cybersecurity operations. The ideal candidate will have hands-on expertise in monitoring, analyzing, and responding to security incidents while ensuring the organization''s security posture remains strong. The role requires experience with SIEM platforms, endpoint security, threat intelligence, incident response, and vulnerability management.

  • We’re looking for some experience with security operations tooling
  • We require some prior SOC experience

Key Responsibilities

•       Monitor and analyze security events using SIEM tools to detect and respond to potential threats.

•       Investigate security alerts, perform root cause analysis, and coordinate incident response activities.

•       Conduct threat hunting and proactively identify indicators of compromise (IOCs).

•       Analyze malware, phishing attempts, and other cyber threats.

•       Manage and optimize SIEM use cases, detection rules, and security dashboards.

•       Monitor endpoint detection and response (EDR) tools and investigate suspicious activities.

•       Collaborate with IT and infrastructure teams to remediate security vulnerabilities.

•       Perform vulnerability assessments and support remediation efforts.

•       Create and maintain incident reports, playbooks, SOPs, and security documentation.

•       Support compliance initiatives and security audits.

•       Stay updated on emerging threats, attack techniques, and cybersecurity best practices.

•       Participate in on-call rotations for critical security incidents, as required.

Required Skills

•       Strong understanding of Security Operations Center (SOC) processes and incident response.

•       Experience with SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, ArcSight, or LogRhythm.

•       Hands-on experience with EDR solutions such as Microsoft Defender for Endpoint, CrowdStrike Falcon, SentinelOne, or Carbon Black.

•       Knowledge of MITRE ATT&CK framework, Cyber Kill Chain, and threat intelligence.

•       Experience with vulnerability management tools such as Nessus, Qualys, or Tenable.

•       Familiarity with IDS/IPS, firewalls, email security, DNS security, and web security technologies.

•       Strong understanding of Windows, Linux, Active Directory, networking, and cloud security fundamentals.

•       Experience analyzing logs from operating systems, applications, network devices, and cloud platforms.

•       Basic scripting skills in PowerShell or Python for automation are preferred.

•       Strong analytical, troubleshooting, and communication skills.

Preferred Qualifications

•       Experience with cloud security (AWS, Azure, or Google Cloud).

•       Knowledge of SOAR platforms and security automation.

•       Familiarity with threat intelligence platforms and digital forensics.

•       Experience supporting compliance frameworks such as ISO 27001, SOC 2, PCI DSS, HIPAA, or NIST.

Preferred Certifications

•       CompTIA Security+

•       CySA+

•       GSEC

•       GCIA

•       GCIH

•       CEH

•       Microsoft SC-200

•       Splunk Certified Cybersecurity Defense Analyst

CISSP (Preferred)

 

Skills

AWS
PCI DSS
SOC 2
Splunk
Active Directory
Azure
DNS
Google Cloud
HIPAA
PowerShell
Python

Similar jobs