🛠 Tech Stack

💼 About This Role

You'll join the MSSP SOC team, analyzing and responding to security incidents for a well-funded startup. You'll triage Level 1 alerts, develop detection rules in Splunk/QRadar, and collaborate with customers to address threats. Python scripting for playbook automation is a key part of the role.

🎯 What You'll Do

• Analyze and investigate security alerts from SIEM and XDR/EDR.
• Conduct in-depth incident investigations and assess impact.
• Develop and fine-tune correlation rules in SIEM/XDR platforms.
• Collaborate with customers on security concerns and recommendations.

📋 Requirements

• 3+ years in a SOC or cybersecurity operations role.
• Strong knowledge of SIEM tools (Splunk, QRadar) and XDR/EDR.
• Hands-on experience in threat detection and incident response.
• Proficiency in Python scripting for automation and playbook development.

✨ Nice to Have

• Certified SOC Analyst (CSA) or Certified Incident Handler (GCIH, ECIH).
• Splunk Certified Admin or QRadar Certified Analyst.
• CompTIA Security+, CEH, or CISSP.

🎁 Benefits & Perks

• 💡 Innovation culture and continuous learning.
• 🌍 Collaborative team in a dynamic startup.
• 🤝 Equal opportunity employer with inclusive workplace.

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter phone screen· 15-30 min
2. 2Technical interview· 45-60 min
3. 3Hiring decision· 1-2 weeks