Trace3
Sr. SOC Analyst (Remote)
The Security Operations Center (SOC) Analyst serves as a senior member of the Security Operations Center, exercising discretion and independent judgment in monitoring, analyzing, and responding to cybersecurity incidents. This role provides strategic recommendations, guides response procedures, and ensures alignment with organizational security policies and compliance requirements. What You'll Do: Oversee the monitoring of security alerts and events from SIEM, EDR, IDS/IPS, firewalls, and other security tools Lead investigations of security incidents, determine root cause, and develop remediation strategies in coordination with stakeholders Establish standards for incident documentation, ensure proper escalation paths, and recommend updates to procedures Execute initial containment and remediation steps based on defined playbooks Maintain situational awareness of current threats and vulnerabilities and provide recommendations to stakeholders Deliver detailed and accurate incident reports for clients and stakeholders Collaborate with incident response, threat intelligence, and engineering teams for deeper investigations and response activities Analyze logs across endpoints, servers, and cloud environments to identify anomalies and suspicious activity Conduct or coordinate vulnerability assessments and support remediation activities Administer and configure endpoint and threat detection platforms, including Intune, Jamf Pro, Arctic Wolf, Azure Security Center, and Mimecast Participate in system hardening, secure configurations, and patching of Windows/macOS systems Support phishing simulations, security awareness training, and assist with compliance documentation (e.g., NIST, SOC 2, ISO 27001, NERC-CIP) Develop, review, and approve knowledge base content and runbooks to guide junior analysts Participate in after-hours/on-call rotation, if required Qualifications: 3+ years of experience in a SOC, cybersecurity, or IT security operations role Ability to exercise independent judgment in security event analysis and remediation decisions Experience guiding and mentoring junior SOC analysts Demonstrated capability to influence process improvements and recommend updates to policies, procedures, and playbooks Hands-on experience with security operations platforms such as Arctic Wolf and Azure Security Center, including configuration, tuning, and alert triage. Familiarity with SIEM tools (e.g., Splunk, Sentinel, LogRhythm), EDR platforms (e.g., CrowdStrike, SentinelOne), and general networking concepts Experience with ITSM systems (e.g., ServiceNow, ConnectWise, FreshService) Experience managing endpoint security, email security (e.g., Mimecast), and system patching tools Proficiency with scripting languages like PowerShell or Bash for automation Hands-on experience supporting both Windows and macOS environments, including lifecycle and configuration management. Understanding of common attack vectors (e.g., phishing, ransomware, lateral movement) Strong analytical, investigative, and problem-solving skills Excellent written, verbal, and interpersonal communication skills High adaptability to change and a customer-first mindset Strong documentation habits and a commitment to knowledge-sharing Familiarity with frameworks such as NIST, MITRE ATT&CK, CIS Controls Participate in a scheduled on-call rotation to provide after-hours escalation support for critical incidents, ensuring timely resolution and communication. Actual salary will be based on a variety of factors, including location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base salary. Estimated Pay Range $80,000 - $100,000 USD The Perks: Comprehensive medical, dental and vision plans for you and your dependents 401(k) Retirement Plan with Employer Match, 529 College Savings Plan, Health Savings Account, Life Insurance, and Long-Term Disability Competitive Compensation Training and development programs Stocked kitchen with snacks and beverages Collaborative and cool culture Work-life balance and generous paid time off Our Commitment: At the core of Trace3's DNA is our people. We are a diverse group of talented individuals who understand the importance of teamwork and demonstrating leadership, character, and passion in all that we do. We're committed to fostering an inclusive workplace where everyone feels respected, valued, and empowered to grow. We recognize that embracing diversity drives innovation, improves outcomes, fosters collaboration, boosts teammate satisfaction, and builds a more inclusive culture. As an equal opportunity employer, Trace3 bases all employment decisions based on individual qualifications, merit, and business requirements. We do not engage in discrimination on the basis of race, color, religion, sex (including gender identity, sexual orientation, and pregnancy), national origin, age (40 or older), disability, genetic information, or any other characteristic protected by federal, state, or local law. Any demographic information provided is strictly voluntary, kept confidential in accordance with Equal Employment Opportunity (EEO) regulations, and will not be used in employment decisions, including hiring, promotions, or mentorship programs. We are committed to providing equal employment opportunities for all. If you require a reasonable accommodation to complete the application process or participate in an interview, please email recruiting@trace3.com. ***To all recruitment agencies: Trace3 does not accept unsolicited agency resumes/CVs. Please do not forward resumes/CVs to our careers email addresses, Trace3 employees or any other company location. Trace3 is not responsible for any fees related to unsolicited resumes/CVs.
The Security Operations Center (SOC) Analyst serves as a senior member of the Security Operations Center, exercising discretion and independent judgment in monitoring, analyzing, and responding to cybersecurity incidents. This role provides strategic recommendations, guides response procedures, and ensures alignment with organizational security policies and compliance requirements. What You'll Do: Oversee the monitoring of security alerts and events from SIEM, EDR, IDS/IPS, firewalls, and other security tools Lead investigations of security incidents, determine root cause, and develop remediation strategies in coordination with stakeholders Establish standards for incident documentation, ensure proper escalation paths, and recommend updates to procedures Execute initial containment and remediation steps based on defined playbooks Maintain situational awareness of current threats and vulnerabilities and provide recommendations to stakeholders Deliver detailed and accurate incident reports for clients and stakeholders Collaborate with incident response, threat intelligence, and engineering teams for deeper investigations and response activities Analyze logs across endpoints, servers, and cloud environments to identify anomalies and suspicious activity Conduct or coordinate vulnerability assessments and support remediation activities Administer and configure endpoint and threat detection platforms, including Intune, Jamf Pro, Arctic Wolf, Azure Security Center, and Mimecast Participate in system hardening, secure configurations, and patching of Windows/macOS systems Support phishing simulations, security awareness training, and assist with compliance documentation (e.g., NIST, SOC 2, ISO 27001, NERC-CIP) Develop, review, and approve knowledge base content and runbooks to guide junior analysts Participate in after-hours/on-call rotation, if required Qualifications: 3+ years of experience in a SOC, cybersecurity, or IT security operations role Ability to exercise independent judgment in security event analysis and remediation decisions Experience guiding and mentoring junior SOC analysts Demonstrated capability to influence process improvements and recommend updates to policies, procedures, and playbooks Hands-on experience with security operations platforms such as Arctic Wolf and Azure Security Center, including configuration, tuning, and alert triage. Familiarity with SIEM tools (e.g., Splunk, Sentinel, LogRhythm), EDR platforms (e.g., CrowdStrike, SentinelOne), and general networking concepts Experience with ITSM systems (e.g., ServiceNow, ConnectWise, FreshService) Experience managing endpoint security, email security (e.g., Mimecast), and system patching tools Proficiency with scripting languages like PowerShell or Bash for automation Hands-on experience supporting both Windows and macOS environments, including lifecycle and configuration management. Understanding of common attack vectors (e.g., phishing, ransomware, lateral movement) Strong analytical, investigative, and problem-solving skills Excellent written, verbal, and interpersonal communication skills High adaptability to change and a customer-first mindset Strong documentation habits and a commitment to knowledge-sharing Familiarity with frameworks such as NIST, MITRE ATT&CK, CIS Controls Participate in a scheduled on-call rotation to provide after-hours escalation support for critical incidents, ensuring timely resolution and communication. Actual salary will be based on a variety of factors, including location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base salary. Estimated Pay Range $80,000 - $100,000 USD The Perks: Comprehensive medical, dental and vision plans for you and your dependents 401(k) Retirement Plan with Employer Match, 529 College Savings Plan, Health Savings Account, Life Insurance, and Long-Term Disability Competitive Compensation Training and development programs Stocked kitchen with snacks and beverages Collaborative and cool culture Work-life balance and generous paid time off Our Commitment: At the core of Trace3's DNA is our people. We are a diverse group of talented individuals who understand the importance of teamwork and demonstrating leadership, character, and passion in all that we do. We're committed to fostering an inclusive workplace where everyone feels respected, valued, and empowered to grow. We recognize that embracing diversity drives innovation, improves outcomes, fosters collaboration, boosts teammate satisfaction, and builds a more inclusive culture. As an equal opportunity employer, Trace3 bases all employment decisions based on individual qualifications, merit, and business requirements. We do not engage in discrimination on the basis of race, color, religion, sex (including gender identity, sexual orientation, and pregnancy), national origin, age (40 or older), disability, genetic information, or any other characteristic protected by federal, state, or local law. Any demographic information provided is strictly voluntary, kept confidential in accordance with Equal Employment Opportunity (EEO) regulations, and will not be used in employment decisions, including hiring, promotions, or mentorship programs. We are committed to providing equal employment opportunities for all. If you require a reasonable accommodation to complete the application process or participate in an interview, please email recruiting@trace3.com. ***To all recruitment agencies: Trace3 does not accept unsolicited agency resumes/CVs. Please do not forward resumes/CVs to our careers email addresses, Trace3 employees or any other company location. Trace3 is not responsible for any fees related to unsolicited resumes/CVs.