SOC Analyst (Cybersecurity)

TL;DR

SOC Analyst (Cybersecurity): Review, triage, and respond to security alerts from endpoints to cloud infrastructure with an accent on tuning rules and MITRE ATT&CK coverage. Focus on writing new detection rules, reducing false positives, escalating incidents, and collaborating on visibility projects.

Location: Full-time onsite at our San Francisco office required. Regular business hours with some weekend and evening coverage.

Salary: $115,000 - $145,000 USD base + equity + annual performance bonus

Company

Leading infrastructure provider of digital asset solutions including custody, wallets, staking, trading, financing, and settlement from regulated cold storage.

What you will do

• Review and triage security alerts from various sources across the organization
• Tune rules to reduce false positives and write new rules for MITRE ATT&CK coverage
• Escalate potential incidents and assist in incident response activities
• Run projects from beginning to end
• Work with Engineering and IT on visibility coverage and detection

Requirements

• 2+ years responding to alerts
• Familiar with MITRE ATT&CK framework
• Comfortable writing and tuning detection rules
• Experience triaging alerts and determining incidents
• Exposure to application, SaaS, cloud, and endpoint logs
• Strong communication skills for technical and non-technical audiences

Nice to have

• Experience detecting a real-life security incident

Culture & Benefits

• Competitive base salary, bonus, and stock options
• 100% company-paid health insurance for employee, partner, and dependents
• Up to 4% 401k company match
• Paid parental leave and vacation
• Free commuter/parking pass, custom lunches, dinners, and snacks
• Computer equipment and workplace furniture provided