Absolute Security
Security • Cybersecurity • Enterprise
Absolute Security is a leading provider of self-healing, intelligent security solutions designed to protect businesses in a digital landscape. With a focus on endpoint security, device management, and network access, Absolute Security offers a range of products such as Absolute Control, Absolute Resilience, and Secure Access solutions. These products are built to enhance device and application health, secure access to cloud apps, and enable comprehensive threat protection across web, cloud, and private applications. Absolute Security serves various industries, including education, finance, government, healthcare, and transportation, helping organizations maintain compliance, reduce vulnerabilities, and maximize productivity.
Senior Security Operations Center, SOC Analyst
Job not on LinkedIn
October 28
Absolute Security
Security • Cybersecurity • Enterprise
Absolute Security is a leading provider of self-healing, intelligent security solutions designed to protect businesses in a digital landscape. With a focus on endpoint security, device management, and network access, Absolute Security offers a range of products such as Absolute Control, Absolute Resilience, and Secure Access solutions. These products are built to enhance device and application health, secure access to cloud apps, and enable comprehensive threat protection across web, cloud, and private applications. Absolute Security serves various industries, including education, finance, government, healthcare, and transportation, helping organizations maintain compliance, reduce vulnerabilities, and maximize productivity.
📋 Description
• Monitor and triage alerts from CrowdStrike Falcon and Microsoft Sentinel. • Lead investigations into endpoint and network security incidents including malware, privilege escalation, lateral movement, and data exfiltration. • Execute containment and remediation strategies for identified threats. • Conduct proactive threat hunts using CrowdStrike telemetry and threat intelligence. • Perform forensic analysis of compromised systems and malware samples. • Analyze network logs and packet captures to identify anomalies and attacker behavior. • Investigate cloud-based incidents across Azure, AWS, and GCP environments. • Assess cloud logging readiness and ensure audit trails are complete and actionable. • Collaborate with cloud operations teams to improve detection and response capabilities. • Develop and refine playbooks, runbooks, and standard operating procedures. • Tune SIEM rules and EDR policies to reduce false positives and improve alert fidelity. • Participate in red/blue team exercises and contribute to continuous SOC maturity. • Serve as an escalation point for Tier 1 and Tier 2 analysts. • Mentor junior SOC staff and contribute to team knowledge sharing. • Interface with threat intelligence, incident response, and executive stakeholders.
🎯 Requirements
• 4–7 years of experience in a SOC or cybersecurity analyst role. • Expert-level proficiency with CrowdStrike Falcon and Microsoft Defender. • Strong understanding of MITRE ATT&CK, malware behaviors, and incident response. • Hands-on experience with SIEM platforms (e.g., Splunk, Sentinel, Elastic). • Deep knowledge of Windows, Linux, and macOS internals. • Proficiency in scripting (Python, PowerShell) and log analysis. • Excellent written and verbal communication skills. • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or equivalent experience.
🏖️ Benefits
• Annual bonus program
Apply NowSimilar Jobs
September 24
Lead DevSecOps team at Plooto, a fintech payments platform for SMBs. Ensure secure, reliable cloud infrastructure, CI/CD, monitoring, and mentor engineers.