Key skills
Splunk
About this role
Soho Square Solutions is seeking a motivated and detail-oriented Cybersecurity Analyst to join their Security Operations Center (SOC). In this role, you will be responsible for identifying, investigating, and remediating internal and external threats while contributing to enterprise-wide detection and protection strategies.
Responsibilities:
- Monitor, identify, and analyze security incidents using SIEM tools
- Perform alert triage and initial investigation of security events
- Support endpoint threat detection through EDR, antivirus, asset management, and configuration monitoring
- Contribute to the improvement of security controls, including detection tuning, policy updates, and automation
- Assist in protecting data through DLP, CASB, and URL content filtering solutions
- Analyze network traffic and threats using Next-Generation Firewalls, IDS/IPS
- Conduct threat hunting and leverage threat intelligence sources to enhance detection
- Interpret malware sandbox results and assist in incident response processes
- Prepare weekly reports and metrics on investigations, tickets, and overall SOC activities
- Collaborate with senior analysts on complex investigations and incident response activities
- Perform additional security-related tasks as assigned
Requirements:
- Bachelor's degree in Cybersecurity, Computer Science, Information Security, or related field
- 0–3 years of experience in Cybersecurity, preferably in a SOC or security operations role
- Hands-on experience with SIEM tools (Splunk Enterprise Security experience strongly desired)
- Familiarity with endpoint security tools (EDR, antivirus), vulnerability management, and configuration management
- Understanding of attacker tactics, techniques, and procedures (TTPs)
- Knowledge of incident response processes, malware analysis, and threat intelligence platforms
- Strong problem-solving skills and ability to perform independent research
- Work authorization in the U.S. on their own independent visa
- Exposure to automation in security operations
- Experience with malware sandboxing tools
- Knowledge of data protection technologies (DLP, CASB)