Trianz
Trianz is a leading-edge technology platforms and services company that accelerates digital transformations at Fortune 100 and emerging companies worldwide.
Role Senior SOC Analyst
Employment Type Contract – 12 months
Work Location North Andover, MA; Hybrid – 3 days per week at the customer office location
About the Role We are seeking a highly skilled Senior SOC Analyst to strengthen our cybersecurity detection engineering function. This role will focus on designing, standardizing, and optimizing detection logic across key security tools to elevate overall detection quality and reduce noise. The ideal candidate brings deep experience creating high‑fidelity endpoint detections, enriching alerts with vulnerability data, and collaborating with SOC and threat intelligence teams.
What You’ll Be Doing Detection Engineering & Development
Design, build, and refine high-quality detection logic in CrowdStrike Falcon and SentinelOne (S1).
Develop standardized detection engineering workflows, documentation, and quality controls.
Conduct regular tuning of existing detections to improve fidelity and reduce false positives.
Translate threat intelligence, adversary TTPs, and ATT&CK-based behaviors into actionable detections.
Alert Enrichment & Signal Quality
Leverage vulnerability data from Rapid7 to create context‑rich detections and improve alert prioritization.
Validate detection performance through testing, simulation, and SOC feedback loops.
Collaborate with SOC teams to ensure detections align with operational requirements and response workflows.
Cross‑Functional Collaboration
Work closely with SOC Operations, Threat Intelligence, and Security Engineering teams to align detection logic with evolving threat landscapes.
Maintain a clear boundary between detection engineering and automation or SOAR workflows.
Provide subject‑matter expertise and mentorship to junior analysts.
Why Join Us
Be part of a rapidly rising, global technology innovator whose platforms are engaged by Fortune 1000 companies and industry leaders such as Microsoft & Amazon.
Immerse yourself in a culture where creativity is celebrated and encouraged.
Engage in thrilling projects and opportunities for your professional growth.
Contribute to our quest to redefine the industry.
Competitive compensation and benefits with distinctive perks.
Who you are
A minimum of 12 years of overall experience in IT Infrastructure domains, including at least 5 years of hands‑on experience in Security Operations, Detection Engineering, or related cybersecurity functions.
5 years in Security Operations, Detection Engineering, Threat Hunting, or Incident Response.
Proven hands‑on experience creating detections in CrowdStrike Falcon.
Proven hands‑on experience creating detections in SentinelOne (S1).
Experience enriching and correlating security signals using Rapid7 or similar vulnerability management tools.
Core Technical Skills
Strong understanding of SOC workflows, alert triage, incident response, and threat hunting methodologies.
Expertise mapping detections to frameworks like MITRE ATT&CK, CIS, and NIST.
Ability to convert threat intelligence reports into high‑fidelity detection logic.
Familiarity with the detection lifecycle management: design → test → tune → deploy → monitor.
Education Bachelor’s degree in computer science, electrical engineering, cybersecurity, information security, or a related field preferred.
Equal Employment Opportunity Trianz is an Equal Opportunity Employer and does not discriminate based on race, color, creed, national or ethnic origin, gender, religion, disability, age, political affiliation or belief, special needs veteran, veteran of the Vietnam Era, or citizenship status (except in those special circumstances permitted or mandated by law). We comply with all state and federal laws and regulations protecting employees and applicants against illegal discrimination, retaliation, and harassment. Our policy is available upon request. Trianz participates in the E‑Verify program in certain locations, as required by law. We are committed to providing reasonable accommodation for all qualified individuals with a disability or other reasons protected by applicable laws.
#J-18808-Ljbffr
Role Senior SOC Analyst
Employment Type Contract – 12 months
Work Location North Andover, MA; Hybrid – 3 days per week at the customer office location
About the Role We are seeking a highly skilled Senior SOC Analyst to strengthen our cybersecurity detection engineering function. This role will focus on designing, standardizing, and optimizing detection logic across key security tools to elevate overall detection quality and reduce noise. The ideal candidate brings deep experience creating high‑fidelity endpoint detections, enriching alerts with vulnerability data, and collaborating with SOC and threat intelligence teams.
What You’ll Be Doing Detection Engineering & Development
Design, build, and refine high-quality detection logic in CrowdStrike Falcon and SentinelOne (S1).
Develop standardized detection engineering workflows, documentation, and quality controls.
Conduct regular tuning of existing detections to improve fidelity and reduce false positives.
Translate threat intelligence, adversary TTPs, and ATT&CK-based behaviors into actionable detections.
Alert Enrichment & Signal Quality
Leverage vulnerability data from Rapid7 to create context‑rich detections and improve alert prioritization.
Validate detection performance through testing, simulation, and SOC feedback loops.
Collaborate with SOC teams to ensure detections align with operational requirements and response workflows.
Cross‑Functional Collaboration
Work closely with SOC Operations, Threat Intelligence, and Security Engineering teams to align detection logic with evolving threat landscapes.
Maintain a clear boundary between detection engineering and automation or SOAR workflows.
Provide subject‑matter expertise and mentorship to junior analysts.
Why Join Us
Be part of a rapidly rising, global technology innovator whose platforms are engaged by Fortune 1000 companies and industry leaders such as Microsoft & Amazon.
Immerse yourself in a culture where creativity is celebrated and encouraged.
Engage in thrilling projects and opportunities for your professional growth.
Contribute to our quest to redefine the industry.
Competitive compensation and benefits with distinctive perks.
Who you are
A minimum of 12 years of overall experience in IT Infrastructure domains, including at least 5 years of hands‑on experience in Security Operations, Detection Engineering, or related cybersecurity functions.
5 years in Security Operations, Detection Engineering, Threat Hunting, or Incident Response.
Proven hands‑on experience creating detections in CrowdStrike Falcon.
Proven hands‑on experience creating detections in SentinelOne (S1).
Experience enriching and correlating security signals using Rapid7 or similar vulnerability management tools.
Core Technical Skills
Strong understanding of SOC workflows, alert triage, incident response, and threat hunting methodologies.
Expertise mapping detections to frameworks like MITRE ATT&CK, CIS, and NIST.
Ability to convert threat intelligence reports into high‑fidelity detection logic.
Familiarity with the detection lifecycle management: design → test → tune → deploy → monitor.
Education Bachelor’s degree in computer science, electrical engineering, cybersecurity, information security, or a related field preferred.
Equal Employment Opportunity Trianz is an Equal Opportunity Employer and does not discriminate based on race, color, creed, national or ethnic origin, gender, religion, disability, age, political affiliation or belief, special needs veteran, veteran of the Vietnam Era, or citizenship status (except in those special circumstances permitted or mandated by law). We comply with all state and federal laws and regulations protecting employees and applicants against illegal discrimination, retaliation, and harassment. Our policy is available upon request. Trianz participates in the E‑Verify program in certain locations, as required by law. We are committed to providing reasonable accommodation for all qualified individuals with a disability or other reasons protected by applicable laws.
#J-18808-Ljbffr