Senior SOC Analyst - Fully Remote

Description

This position is fully remote. Must be eligible to work in the United States.

About the Role:

The Senior SOC Analyst will be responsible for leading threat detection, incident response, and continuous monitoring of our security infrastructure. This role involves mentoring junior analysts, optimizing SOC processes, and collaborating with cross-functional teams to enhance our cybersecurity posture.

Senior SOC Analyst responsibilities include, but are not limited to, the following:

• Lead and support SOC operations, including real-time monitoring, threat analysis, and incident response.
• Investigate security events, conduct root cause analysis, and recommend mitigation strategies.
• Develop and refine security detection rules, playbooks, and procedures.
• Perform advanced threat hunting and proactive threat analysis using SIEM, EDR, and other security tools.
• Act as an escalation point for complex security incidents and coordinate incident response efforts.
• Provide mentorship and training to junior SOC analysts to enhance their investigative skills.
• Handle escalations from junior analysts
• Responsible for conducting in-depth analysis of alert
• Discover and hunt for tunning opportunities

Requirements

What You Bring To The Team

• An associate\bachelor’s degree or equivalent experience in Information Technology, Computer Science, System Administration or Cybersecurity
• 5+ years in a Security Operations Center (SOC)
• Strong expertise with SIEM tools (e.g, Microsoft Sentinel, Secronix)
• Proficiency in endpoint detection & response (EDR) tools (e.g., CrowdStrike, SentinelOne, Microsoft Defender).
• Strong expertise in Cloud Security (Azure/Microsoft365)
• Familiarity with Threat Actor Methods: (MITRE ATT&CK Framework, PowerShell, Command Prompt, WMIC, Scheduled Tasks, Windows Domain and Host Enumeration Techniques, Lateral Movement Techniques, Persistence Mechanisms, Defense Evasion Techniques)
• Proven experience on platforms such as HackTheBox, TryHackMe, etc.

Preferred Qualifications

• 5+ years of experience with SentinelOne or CrowdStrike
• 5+ years of experience with a SIEM (e.g, Microsoft Sentinel, Secronix)
• 5+ year of experience on platforms such as HackTheBox, TryHackMe, etc.
• 5+ years of experience with incident response/Management
• 5+ years of experience with Cloud Security (Azure/Microsoft365) and handling business email compromises (BEC)

Hours & Schedule

This position is primarily business hours (Monday-Friday 8am – 5pm EST) with occasional after-hours work for incidents. All engineers are part of an on-call rotation and may be escalated issues off hours.

Work Perks

• 100% permanently remote position with no plans to return to an office
• Paid time off including paid holidays and float holidays
• Highly competitive and flexible medical, dental, and vision benefits plans to suit your needs
• 401(k) with employer match
• Tailored Life and Disability insurance plans
• Full reimbursement for approved professional certification and career enriching opportunities
• Monthly mobile phone plan and internet service stipend

What We Do

Magna5 is a rapidly growing IT Managed Service Provider delivering cybersecurity, private and public cloud hosting, backup and disaster recovery and other advanced services from mid-market to enterprise customers nationwide, including leaders within the education, healthcare, government, financial services, manufacturing, and other industry segments. We integrate advancements in technology and processes to drive businesses forward. As a trusted managed services provider, we bring together the right mix of managed IT services, security, and network connectivity, fully managed by our team of experts 24/7/365. Our passion is to help companies function better, faster, and smarter. We offer an exciting and collaborative environment, with growth potential. For more information, visit our website at https://www.magna5.com/