Security Operations Center (SOC) Analyst

Our client, a leading Am Law 50 firm, is seeking a Security Operations Center (SOC) Analyst to join its Information Security Department. This position operates on the second shift (3:00 PM 12:00 AM ET, Monday through Friday) and plays a key role in protecting the firm's global technology environment.

About the Role

The SOC Analyst serves as the first line of defense for information security operations, monitoring, investigating, and responding to potential threats. This role involves threat hunting, triaging security alerts, troubleshooting security tools (VPN, email, endpoint protection), and supporting routine system maintenance.

The ideal candidate brings strong analytical thinking, independent judgment, and the ability to collaborate with engineers, IT, and business teams to maintain and strengthen the firm's security posture.

Key Responsibilities

• Actively monitor for and respond to security events, indicators of compromise, and potential data exfiltration
• Triage, investigate, and remediate security detections; escalate to Tier 2/3 when needed
• Troubleshoot and maintain security tools (e.g., VPN, email security, endpoint protection)
• Partner with Information Security and IT teams to support incident response and system improvements
• Assist with routine maintenance, documentation, and configuration updates
• Contribute to the continuous improvement of security monitoring and detection capabilities

Qualifications & Skills

• 2+ years of experience in cybersecurity, SOC operations, or related IT support role
• Strong understanding of threat detection, vulnerability management, identity/access management, and endpoint protection
• Ability to apply critical thinking and discretion in resolving incidents
• Excellent communication skills with the ability to explain technical concepts in business terms
• Familiarity with SIEM tools, firewalls, web filtering, and security protocols

Certifications (Preferred):

• CompTIA Security+, ISC2 CC, or equivalent entry-level certifications (required)
• Advanced certifications such as CISSP, PCNSE, or equivalent highly preferred

Skills and Certifications [note: bold skills and certifications are required]
2+ years of experience in cybersecurity, SOC operations, or related IT support role
Understanding of threat detection, vulnerability management, identity/access management & endpoint protection
Ability to apply critical thinking and discretion in resolving incidents
Excellent communication skills with the ability to explain technical concepts in business terms
Familiarity with SIEM tools, firewalls, web filtering, and security protocols
second shift (3:00 pm to 12:00 am EST, Monday - Friday) & participate in an on-call rotation

Security Clearance Required: No

Visa Candidate Considered: No