Security Engineer enhancing cybersecurity tools and solutions for The Walt Disney Company. Performing system analyses and developing security configurations for improved protection against cyber threats.
About the role
- Lead Cybersecurity Analyst responsible for technical leadership of a 24x7 SOC team at AT&T. Drive operational standards, incident response, and continuous improvement initiatives.
Responsibilities
- Lead daily SOC operations across shifts to ensure continuous monitoring and timely response to security events.
- Coordinate shift handoffs and ensure accurate case documentation.
- Provide real-time direction during active incidents, including prioritization, tasking, and escalation.
- Maintain operational readiness (coverage, tooling availability, playbooks, and procedures).
- Define, document, and enforce SOC operational standards (SLAs, response time targets, escalation criteria, and documentation quality).
- Drive continuous improvement initiatives (use case tuning, reduction of false positives, workflow optimization).
- Assist with onboarding, cross-training, and skills development plans for analysts.
- Communicate incident status clearly to technical and non-technical stakeholders, ensuring timely and accurate updates.
- Contribute to executive-ready reporting and operational briefings.
- Track and report SOC Metrics (MTTA/MTTR, case volume, false positive rates, SLA compliance, escalation rates).
- Identify recurring issues and propose corrective actions (process, detection, or tooling changes).
Requirements
- 5+ years of cybersecurity operations experience, including SOC monitoring and incident response.
- 1–2+ years in a lead/shift-lead role with demonstrated operational leadership.
- Hands-on experience with SIEM/SOAR and alert triage workflows; ability to guide investigations end-to-end.
- Strong understanding of incident response lifecycle, log analysis, and attacker techniques (e.g., MITRE ATT&CK).
- Experience setting procedures/standards and improving operational processes in a 24x7 environment.
- Familiarity with applying Artificial Intelligence (AI) or Machine Learning (ML) techniques in cybersecurity contexts (e.g., anomaly detection, threat hunting, behavioral analytics, or risk scoring).
Benefits
- Medical/Dental/Vision coverage
- 401(k) plan
- Tuition reimbursement program
- Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
- Paid Parental Leave
- Paid Caregiver Leave
- Additional sick leave beyond what state and local law require may be available but is unprotected
- Adoption Reimbursement
- Disability Benefits (short term and long term)
- Life and Accidental Death Insurance
- Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
- Employee Assistance Programs (EAP)
- Extensive employee wellness programs
- Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Operations Lead responsible for security operations aligning with policies and compliance. Handling incident response, vulnerability management, and supporting IT teams with security expertise.
SOC L2 Analyst responsible for security monitoring and incident investigation. Analyzing escalated alerts, conducting correlation with SIEM, and executing response actions.
Cyber Security Specialist protecting digital estate from threats at the University of Edinburgh. Focused on identifying and mitigating cyber risks while supporting teaching and research services.
Lead Specialist in Security Operations, enhancing detection engineering and incident response at Pearson. Collaborate with teams and drive process improvements in a high - paced environment.
Cybersecurity Incident Response Analyst detecting and responding to cyber threats at NOV. Collaborating using AI tools to enhance cybersecurity operations across IT, cloud, and OT environments.
Security Engineer II at AvidXchange enhancing security operations and incident response. Collaborating with teams to develop, tune and improve security monitoring and automation capabilities.
Director leading security operations strategy and overseeing investigations at Ford Motor Company. Responsible for global investigations, crisis management, and team leadership.
Cloud Security Engineer at Artemys designing and maintaining secure Azure infrastructures, overseeing security monitoring and incident management.
Lead global Cyber Detect and Respond team at Assa Abloy, ensuring timely incident response and security compliance. Oversee operations while collaborating across IT and business functions for effective threat management.