SOC Security Analyst
Cyber Focus AI · United States · 3 days ago
RemoteRemoteAnalyst$65–$75/hrPart-time
Key Responsibilities
- Monitor, investigate, and respond to security detections across the SIEM, driving alerts to resolution.
- Develop, tune, and maintain SIEM use cases and correlation rules to improve detection coverage.
- Build and deliver operational reports and dashboards from available SIEM log source data.
- Identify, assess, and escalate high-impact events from multiple data sources to senior staff and stakeholders following established procedures.
- Intake, triage, and respond to security reports (phishing, suspicious activity, etc.), escalating as necessary.
- Owning the lifecycle of security tickets in the case management system, ensuring accurate documentation, timely updates, and proper closure.
- Support proactive investigations and threat hunting as directed.
- Provide day-to-day SOC operational support and coverage, communicating findings and relevant event details clearly to team members and stakeholders.
- Draft and update SOC and Authentic8 documentation, runbooks, standards, and procedures.
- Work with system and application owners to remediate discovered security vulnerabilities.
Requirements
- 2+ years of experience in security operations, incident response, or a related security discipline (SOC analyst experience strongly preferred).
- Hands-on SIEM experience - investigating alerts, building and tuning use cases and correlation rules, and generating reports (e.g., Splunk, Microsoft Sentinel, Elastic, QRadar, or similar).
- Demonstrated experience with phishing analysis and email security response.
- Pristine ability to triage and escalate security incidents independently using documented playbooks.
- Solid understanding of networking concepts (TCP/IP, DNS, HTTP/S) and operating systems (Windows and Linux).
- Experience with case/ticket management and clear, audit-ready documentation.
- Strong written and verbal communication skills, with the ability to convey findings to both technical and non-technical audiences.
- Able to work independently with minimal oversight in a structured operations environment.
- Must be able to pass a background investigation in accordance with company policy.
- Must be a US Citizen
- Strongly Desired: Security certifications such as CySA+, GCIH, GCIA, Security+, or Blue Team Level 1 (BTL1).
- Experience with EDR platforms, IDS/IPS, and vulnerability scanners.
- Scripting ability for automation and enrichment (Python, PowerShell, Bash).
- Experience with SOAR platforms or automated response workflows.
- Exposure to threat intelligence and IOC-driven threat hunting methodologies.
Pay
Salary: $65.00-$75.00/hr
Schedule: Part-time 25 hours a week
Individual pay will be determined by location and additional factors, including job related skills, experience, and relevant education or training.
Authentic8 Core Values & Principles
- Integrity: We apply our best efforts. We are honest with and accountable to others.
- Mission-Focused: We clearly define and communicate our goals and do not stray in the pursuit of our objective.
- Respect: We value and respect the ideas and experience our diverse backgrounds bring us. Positive consideration of differing viewpoints makes us stronger. We are collaborative.
- Transparent: By operating with common information and understanding we ensure that we are aligned. We find innovative solutions.