Back to jobsApply
Keyrock

Digital asset market makers building scalable, self-adaptive technologies to support efficient markets.

SOC Analyst, Level 2

Security OperationsSecurity OperationsFull TimeRemoteTeam 51-200Since 2017H1B No SponsorCompany SiteLinkedIn

Location

California + 4 moreAll locations: California, Florida, Illinois, New Jersey, New York

Posted

30 days ago

Salary

Not specified

2.5 yrs expEnglishCloudService NowSplunk

Job Description

• Take escalations from L1 and independently investigate complex, multi-signal alerts (identity compromise, cloud control-plane abuse, endpoint persistence, lateral movement, suspicious automation, data exfiltration). • Perform deep log/telemetry analysis across SIEM, EDR, cloud logs, IAM signals, network telemetry, email security, and SaaS audit trails. • Build and validate hypotheses, pivot across data sources, and produce clear incident timelines and scope assessments. • Serve as technical incident lead for defined incident types/severities (or co-lead with IR), driving containment and eradication steps within authorized bounds. • Execute and improve response playbooks for key scenarios (phishing/BEC, credential theft, token/key compromise, suspicious API activity, ransomware indicators, insider risk signals).

Job Requirements

  • 2–5+ years of SOC / incident response / security operations experience (or equivalent hands-on experience in a fast-paced production environment).
  • Strong ability to investigate across cloud security operations, endpoint security, identity, and core network fundamentals.
  • Proficiency with at least one SIEM and common SOC tooling (e.g., Splunk/Elastic/Sentinel; CrowdStrike/Defender; Jira/ServiceNow).
  • Ability to write clear incident documentation: timelines, scope, impact, containment actions, and recommended remediations.
  • Comfort operating in an on-call or shift environment (depending on coverage model).

Benefits

  • Remote work options
  • Professional development opportunities

Related Categories

Security Operations

Related Job Pages

Security Operations Jobs in CaliforniaRemote Full-time Jobs (US)More US Remote Jobs

More Security Operations Jobs

SOC Analyst I

Sentinel Blue

Enterprise cybersecurity for small and medium businesses | Specialize in defense and federal | Ask us about CMMC/DFARS

Security Operations31 days ago
Full TimeRemoteTeam 11-50H1B No Sponsor
Company SiteLinkedIn

SOC Analyst I monitoring security operations for Sentinel Blue

View details: SOC Analyst I
United States
$50K - $60K / year
Apply

Security Operations Engineer

Calendly

The scheduling automation platform for eliminating the back-and-forth emails to find the perfect time — and so much more

Security Operations31 days ago
Full TimeRemoteTeam 501-1,000Since 2013H1B No Sponsor
Company SiteLinkedIn

Security Operations Engineer at Calendly enhancing cybersecurity measures and incident response capabilities

AWSCloudCyber SecurityFirewallsGoogle Cloud PlatformLinuxMacOSPythonSplunk
View details: Security Operations Engineer
United States
$155.8K - $219.9K / year
Apply

Senior Technical Manager, Security Operations

Coalfire

Cyber solutions that move you forward, faster.

Security Operations32 days ago
Full TimeRemoteTeam 1,001-5,000Since 2001H1B Sponsor
Company SiteLinkedIn

Technical Senior Manager overseeing Security Operations at Coalfire

AWSAzureCloudGoogle Cloud PlatformSplunk
View details: Senior Technical Manager, Security Operations
United States
$94K - $163K / year
Apply

Incident Response Eng

American Technology Services
Security Operations32 days ago
Full TimeRemoteTeam 66Since 1994
Company Site

The role involves responding to security incidents, enhancing incident response processes, conducting investigations, and performing proactive threat hunting.

AWSAzureCybersecurityEdrMitre Att&CkSIEM
View details: Incident Response Eng
Georgia
Apply