Cybersecurity Analyst (SOC, Cloud & Endpoint Defense)
Mission.dev · United States · Yesterday
RemoteRemoteEngineering$58k–$62k/yrFull-time
About the role
Mission.dev is the next-gen staffing platform for software talent. We help you find, evaluate, and manage top software talent (contractors or direct hires) faster, smarter, and more efficiently. Powered by AI. Backed by real humans.
What You'll Do
- Monitor security events using SIEM, EDR, and SOAR technologies to identify potential threats across client environments.
- Investigate and validate security alerts to determine the scope, severity, and business impact of potential incidents.
- Escalate high-risk incidents to senior responders according to established playbooks and procedures.
- Analyze logs across endpoint, identity, and cloud platforms to identify indicators of compromise and suspicious activity.
- Support incident response efforts through containment, eradication, recovery, and post-incident documentation.
- Communicate technical findings and response recommendations clearly to internal teams and external clients.
- Assist with proactive threat hunting activities and the continuous improvement of detection rules and automation workflows.
- Maintain accurate documentation of investigations and response activities in accordance with operational standards.
Requirements
- 1-3 years of experience in a Security Operations Center (SOC), IT operations, or a related cybersecurity role.
- Foundational knowledge of networking concepts, including TCP/IP, DNS, VPNs, and firewall technologies.
- Proficiency with Windows and Linux operating systems and basic system administration.
- Familiarity with common SIEM platforms and endpoint detection and response (EDR/XDR) solutions.
- Understanding of cyberattack techniques such as phishing, malware, ransomware, and lateral movement.
- Knowledge of cybersecurity frameworks including MITRE ATT&CK or NIST.
- Ability to work rotating shifts as part of a 24x7 operational environment.
Qualifications
- Relevant industry certifications such as Security+, CySA+, GCIH, or equivalent.
- Hands-on experience with major cloud providers such as AWS, Azure, or GCP.
- Knowledge of scripting or query languages like Python, PowerShell, or KQL for automation and investigation.
- Exposure to vulnerability management platforms.
Pay
The annual salary range for this role is $58,000 - $62,000.
Schedule
This role requires 40 hours per week, with direct hiring by the client.