Senior Threat Analyst, Romania

🕒 April 21

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Sophos

Sophos

1001 - 5000 employees

Founded 1985

🔒 Cybersecurity

☁️ SaaS

💰 Post-IPO Equity on 2021-08

Cybersecurity • SaaS

Sophos is a leading cybersecurity company that specializes in protecting businesses against advanced cyber threats. The company offers a comprehensive suite of security solutions, including endpoint protection, managed detection and response (MDR), network security, and cloud security. With a prevention-first approach, Sophos aims to stop ransomware and other cyber threats before they cause harm. Sophos provides services such as threat research, security training, and operational support to ensure robust defense against cyberattacks. Their solutions cater to various industries including finance, healthcare, government, manufacturing, and retail. The Sophos Central platform delivers centralized security management, integrating seamlessly with existing IT infrastructure to enhance security posture.

📋 Description

• Lead shift operations and coordinate response activities across the MDR SecOps team during assigned shifts • Mentor and guide lower tier analysts, providing technical expertise and escalation support for complex investigations • Oversee end-to-end analysis of sophisticated threats, coordinating multi-analyst investigations and ensuring comprehensive scope assessment • Drive technical decision-making during critical incidents, determining escalation paths and resource allocation • Lead threat hunting initiatives across the MDR customer base and coordinating team efforts • Refine detection logic, working with engineering teams to reduce false positives and improve detection efficacy • Serve as subject matter expert on advanced persistent threats, zero-day exploits, and emerging attack vectors • Coordinate cross-functional collaboration with adjacent projects • Use, maintain and develop internal playbooks, investigation methodologies, and technical documentation • Lead client escalations for high-severity incidents, providing technical briefings and coordinating remediation efforts • Participate in continuous improvement initiatives within the SOC, identifying process gaps and implementing solutions • Manage shift handovers and ensure seamless 24/7 operations across global teams • Conduct in-depth malware analysis when required for complex investigations • Participate as a SOC representative in technical discussions with product teams, threat research, and customer success organizations when needed • Ensure knowledge transfer and capability development across the analyst team through training and mentorship

🎯 Requirements

• 5+ years of progressive experience in a SOC or advanced cybersecurity roles with demonstrated leadership capabilities • Advanced-level proficiency with endpoint and network security tools (EDR/XDR, SIEM, threat intelligence platforms) and ability to understand detection strategies • Advanced knowledge of Windows, Linux (macOS is a plus) environments including system internals, forensic artifacts, and attack surface analysis • Proven experience leading incident response efforts, coordinating cross-functional teams, and managing complex security investigations • Background in threat hunting with ability to develop hunting queries, and behavioral analytics • Demonstrated experience mentoring junior analysts and developing team capabilities through knowledge transfer and training • Deep understanding of MITRE ATT&CK framework, advanced persistent threat tactics, and emerging attack vectors • Experience with malware analysis and advanced forensic techniques for complex threat investigations • Ability to manage shift operations, coordinate global handovers, and maintain 24/7 SOC effectiveness • Experience working with adjacent teams (engineering, product, threat research) to drive security enhancements and tooling improvements • Track record of developing and implementing SOC processes, playbooks, and operational procedures • Industry certifications such as GCIH, GCFA, GNFA, CISSP, or equivalent are desirable • Bachelor's degree in Information Technology, Computer Science, Cybersecurity or related field, or equivalent extensive practical experience • Fluent English communication skills with ability to articulate complex technical concepts to diverse audiences • Flexibility to work rotating shifts including nights, weekends, and holidays as part of 24x7x365 operations

🏖️ Benefits

• Sophos operates a remote-first working model, making remote work the primary option for most employees. However, some roles may necessitate a hybrid approach. • Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit • Employee-led diversity and inclusion networks that build community and provide education and advocacy • Annual charity and fundraising initiatives and volunteer days for employees to support local communities • Global employee sustainability initiatives to reduce our environmental footprint • Global fitness and trivia competitions to keep our bodies and minds sharp • Global wellbeing days for employees to relax and recharge • Monthly wellbeing webinars and training to support employee health and wellbeing

Apply Now

Similar Jobs

🕒 September 6, 2025

SEGULA Technologies

10,000+ employees

🚀 Aerospace

⚡ Energy

Manage supplier capacity checks and risk tracking for automotive component production at SEGULA Technologies. Coordinate supplier onboarding, reporting, and process improvements.

🗣️🇷🇴 Romanian Required