SU
SunrunStaff SOC Analyst
Staff SOC Analyst driving advanced threat detection and incident response for Sunrun's security team. Leading complex investigations, mentoring analysts, and improving detection capabilities in a remote setup.
About the role
- Monitor and analyze alerts from SIEM, EDR, and other monitoring platforms.
- Perform initial triage of security events using documented playbooks.
- Support CTI workflows, including collecting and summarizing internal and external intelligence.
- Document investigations, incident details, and response actions clearly.
- Escalate confirmed incidents to senior SOC staff or cross-functional teams.
- Contribute to threat reporting for leadership and stakeholders.
- Assist with security projects, such as tool integrations, automation pilots, and process improvements.
- Participate in shift handovers and maintain clear communication of ongoing investigations.
- Share findings and escalate issues effectively to ensure timely resolution.
- Support the development of SOC playbooks, detection rules, and dashboards under guidance.
- Stay current on emerging threats and contribute ideas for continuous improvement.
Requirements
- Bachelor’s degree in Information Security, Computer Science, or related field; OR equivalent practical experience.
- 0–2 years of professional experience in security operations, IT support, or related technical field.
- Basic familiarity with cybersecurity concepts (e.g., malware, phishing, vulnerabilities, log analysis).
- Basic scripting or automation knowledge (Python, PowerShell, Bash).
- Strong analytical and problem-solving skills with attention to detail.
- Exposure to SIEM, EDR, or IDS/IPS tools (academic, lab, or professional).
- Ability to learn new tools and processes quickly in a hands-on environment.
- Clear written and verbal communication skills, including documenting findings.
- Ability to balance day-to-day monitoring with participation in longer-term projects.
- Strong interest in developing toward advanced SOC, CTI, or incident response roles.
- CompTIA Security+, Network+, or equivalent entry-level certification.
- Familiarity with threat intelligence concepts and frameworks (e.g., MITRE ATT&CK).
- Exposure to cloud environments (AWS, Azure, GCP).
- Experience drafting technical or executive reports.
Benefits
- Competitive compensation
- Community-driven culture with employee events
- Generous time off
- Best-in-class benefits
- Fun, modern workspace
- Respectful and nourishing work environment, where every opinion is heard and everyone is encouraged to be an active part of the organizational culture
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
BI
Bogaard Group International, Inc.GSOC Analyst
GSOC Analyst focusing on critical events and risk management operations at Netflix. Monitoring global threats and coordinating incident management efforts in a hybrid work setting.
BI
Bogaard Group International, Inc.GSOC Analyst
GSOC Analyst monitoring global events and managing critical incidents for Netflix's security operations. Ensuring timely communication and assessment during major security threats.
AS
A SocietySecurity Operations Center Engineer
Security Operations Center Engineer enhancing security posture via automation and threat hunting. Requires strong experience with SIEM and SOAR platforms and Python scripting.
CA
Credit AcceptanceSecurity Operations Vulnerability Analyst II
Security Operations Vulnerability Analyst II identifying and mitigating security vulnerabilities. Collaborating with teams to ensure timely risk remediation and protection of enterprise systems.
ON
OntinueSOC Analyst
Cyber Defender (SOC Analyst) acts as the key point of contact for major security incidents. Coordinating response efforts and enhancing procedures at a leading AI - powered security partner.
CI
Core Specialty Insurance Holdings, Inc.Junior Security Operations Center Analyst
Junior SOC Analyst at Core Specialty responsible for monitoring and triaging security alerts across IT environment. This role offers hands - on experience in cybersecurity with a fast - paced operational environment.
TN
Transport for NSWSecurity Operations Coordinator – Temporary Opportunity
Security Operations Coordinator overseeing security strategies and managing operations for public safety in NSW. Collaborating with law enforcement and enhancing transport system resilience with flexible work options.
SA
Intern role in Product Security Operations for Salesforce, leading innovative AI - driven security tools and initiatives. Collaborate with experts to enhance security governance and risk management processes.
CH
Security Operations Manager leading colleague safety and security programs at CVS Health. Responsible for managing security risks and operational performance in retail environments.