About the role

Junior/Mid MDR Analyst investigating and triaging EDR/XDR incidents at Acronis. Collaborating with senior analysts and enhancing automation in cybersecurity workflows.

Responsibilities

Investigate incoming EDR/XDR incidents, focusing on accurate triage and severity assessment
Execute remediation actions such as workload isolation, following established playbooks
Document investigation steps and maintain complete case records
Collaborate with AI engineering to test and refine automated triage and response processes
Escalate complex incidents to senior analysts, providing relevant context and evidence
Support development and refinement of playbooks, automation rules, and incident correlation logic
Communicate clearly with customers via email and phone about incident status and recommendations
Stay informed about current security threats and attacker techniques
Work 5-day/8-hour schedule, with flexibility for morning or afternoon shifts and weekend coverage

1–3 years of experience in SOC, MDR, or IT security operations (internships or equivalent experience in SaaS support acceptable for junior level)
Strong understanding of EDR/XDR operations and security incident workflows
Strong understanding of common attacker's TTPs and MITRE ATT&CK framework in general
Fast at logs analysis in Kibana or manual reviews
Experience working with security tools (EDR, SIEM, SOAR) and interest in automation technologies
Ability to follow structured processes and accurately document findings
Strong communication skills and attention to details
Good English communication skills for effective customer interactions via email and phone

Acronis is a global cyber protection company that provides natively integrated cybersecurity, data protection, and endpoint management for managed service providers (MSPs), small and medium businesses (SMBs), enterprise IT departments and home users.
Our all-in-one solutions are highly efficient and designed to identify, prevent, detect, respond, remediate, and recover from modern cyberthreats with minimal downtime, ensuring data integrity and business continuity.
We offer the most comprehensive security solution on the market for MSPs with our unique ability to meet the needs of diverse and distributed IT environments.
A Swiss company founded in Singapore in 2003, Acronis offers over twenty years of innovation with 15 offices worldwide and more than 1800 employees in 50+ countries.
Acronis Cyber Protect is available in 26 languages in 150 countries and is used by over 20,000 service providers to protect over 750,000 businesses.
Our corporate culture is focused on making a positive impact on the lives of each employee and the communities we serve.
Mutual trust, respect and belief that we can contribute to the world everyday are the cornerstones of our team.
Each member of our “A-Team” plays an instrumental role in driving the success of our innovative and expanding business. We seek individuals who excel in dynamic, global environments and have a never give up attitude, contributing to our collective growth and impact.