SOC Analyst

Job Description

A financial services organization is seeking a full-time Security Operations Analyst to support day-to-day security monitoring and response activities in a regulated enterprise environment. This role is based in the Cambridge, MA area and focuses on monitoring security tools, investigating alerts, and supporting vulnerability and endpoint security programs. The position is well-suited for someone early in their security career who wants hands-on exposure to core security technologies and operational processes.

This position offers the opportunity to build practical experience across multiple security domains, including endpoint protection, network security, logging and monitoring, and identity systems. You'll work closely with experienced security professionals, gain exposure to real incidents, and develop the skills needed to take on more advanced security responsibilities over time.
Required Skills & Experience

• 1-3 years of experience in IT, information security, or security operations
• Experience monitoring or supporting security tools such as SIEM platforms, endpoint protection solutions, firewalls, IDS/IPS, and vulnerability scanners
• Working knowledge of Active Directory, Windows Server, and basic networking concepts
• Ability to analyze alerts, identify potential security issues, and escalate as appropriate
• Strong problem-solving and analytical skills
• Clear written and verbal communication skills
• Ability to work independently in a fast-paced environment
• Proficiency with Microsoft Office tools
• Flexibility to work evenings or weekends when required

Preferred Qualifications

• Associate degree or higher in Information Technology, Cybersecurity, or a related field
• Security-related certifications (e.g., Security+, Microsoft, CISSP, or similar)
• Exposure to log analysis, threat investigation, or basic threat hunting techniques
• Experience supporting audits, compliance efforts, or security documentation
• Background in a regulated industry such as financial services or healthcare

Responsibilities

• Monitor and respond to security alerts generated by firewalls, IDS/IPS, endpoint protection tools, and SIEM systems
• Perform initial triage of security events and escalate incidents to senior staff or vendors as needed
• Assist with deployment, maintenance, and monitoring of endpoint security agents
• Produce recurring reports related to system status, alerts, and endpoint coverage
• Coordinate and support internal and external vulnerability scanning activities
• Review scan results, assist with remediation tracking, and document findings
• Manage and review audit logs and security monitoring outputs for unusual activity
• Assist with maintaining and updating security policies, standards, and procedures
• Provide basic security-related technical support to internal users
• Work closely with internal teams and external partners to resolve security issues
• Stay informed on emerging security threats, tools, and best practices

Technical Environment

• Endpoint Protection / NGAV
• SIEM and log management platforms
• Firewalls and intrusion detection/prevention systems
• Vulnerability scanning and patch management tools
• Active Directory and Windows-based environments

Work Authorization & Benefits

• Full-time position
• Competitive benefits package including medical, dental, vision, PTO, and 401(k)
• Applicants must be authorized to work in the United States on a full-time basis now and in the future