Monitor and triage security alerts from SIEM, EDR, and cloud sources; investigate suspicious endpoint, identity, and cloud activity; document findings; escalate incidents to Tier 2/IR; follow and improve playbooks; communicate clearly with clients and internal teams.
Description
We’re looking for a Tier 1 SOC Analyst to join our team and handle initial triage, monitoring, and investigation of security alerts across cloud and endpoint environments.
This is a client-facing role requiring strong English, excellent verbal communication skills, and the ability to clearly communicate findings and escalations. The position is intended for candidates with at least 1 year of hands-on SOC / Security Operations experience.
The role is based on morning shifts aligned with US working hours, 08:00–17:00 US time.
Responsibilities
- Monitor security alerts from SIEM, EDR, and cloud platforms
- Perform initial triage and classification of alerts as true or false positives
- Investigate suspicious activities across endpoints, identities, and cloud environments
- Escalate confirmed incidents to Tier 2 / Incident Response teams with proper context
- Analyze logs from multiple sources, including CloudTrail, Azure Activity Logs, OS logs, and other relevant security data sources
- Document findings clearly in tickets and investigation reports
- Follow existing playbooks and contribute to improving detection logic over time
- Communicate clearly with internal teams and clients regarding alerts, findings, and escalations
- 1+ years of experience in SOC / Security Operations
- Hands-on experience with EDR tools such as CrowdStrike, SentinelOne, or Microsoft Defender for Endpoint
- Familiarity with SIEM platforms such as Splunk, Microsoft Sentinel, QRadar, or similar
- Understanding of networking basics, including IP, DNS, HTTP/S, ports, and related concepts
- Basic knowledge of Linux and Windows operating systems
- Ability to analyze logs and identify suspicious behavior
- Fluent English, both written and spoken — mandatory
- Excellent verbal communication skills, especially in client-facing situations
Preferred Qualifications
- Experience with cloud environments such as AWS, Azure, or GCP
- Knowledge of GCP / Google Cloud Platform — significant advantage
- Ability to investigate cloud activity, including IAM, API calls, and resource changes
- Understanding of identity-based attacks, such as token abuse and privilege escalation
- Experience with scripting in Python or Bash
Similar Jobs
Information Technology • Software
The SOC Analyst monitors and investigates security alerts, performs triage, escalates incidents, and communicates findings clearly with clients and teams.
Top Skills:
AWSAzureBasCrowdstrikeEdrGCPMicrosoft Defender For EndpointMicrosoft SentinelPythonQradarSentineloneSIEMSplunk
Big Data • Fintech • Mobile • Payments • Financial Services
As the CRA Compliance Lead, you will manage compliance strategies, enhance community engagement, analyze consumer complaints, and ensure alignment with regulatory expectations for Affirm Bank.
Healthtech
Support end-to-end product development by writing clear requirements, using user research and data (Metabase), coordinating with engineers, designers and QA, running tests, tracking performance, and communicating progress for timely launches.
Top Skills:
Metabase
What you need to know about the Chicago Tech Scene
With vibrant neighborhoods, great food and more affordable housing than either coast, Chicago might be the most liveable major tech hub. It is the birthplace of modern commodities and futures trading, a national hub for logistics and commerce, and home to the American Medical Association and the American Bar Association. This diverse blend of industry influences has helped Chicago emerge as a major player in verticals like fintech, biotechnology, legal tech, e-commerce and logistics technology. It’s also a major hiring center for tech companies on both coasts.
Key Facts About Chicago Tech
- Number of Tech Workers: 245,800; 5.2% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: McDonald’s, John Deere, Boeing, Morningstar
- Key Industries: Artificial intelligence, biotechnology, fintech, software, logistics technology
- Funding Landscape: $2.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Pritzker Group Venture Capital, Arch Venture Partners, MATH Venture Partners, Jump Capital, Hyde Park Venture Partners
- Research Centers and Universities: Northwestern University, University of Chicago, University of Illinois Urbana-Champaign, Illinois Institute of Technology, Argonne National Laboratory, Fermi National Accelerator Laboratory


