{"id":848,"date":"2025-12-17T11:38:38","date_gmt":"2025-12-17T11:38:38","guid":{"rendered":"https:\/\/skillbasedmatching.com\/jobs\/?post_type=jobpost&#038;p=848"},"modified":"2025-12-17T11:38:42","modified_gmt":"2025-12-17T11:38:42","slug":"cybersecurity-soc-analyst-l2-support-incident-response-threat-hunting","status":"publish","type":"jobpost","link":"https:\/\/skillbasedmatching.com\/jobs\/current-jobs\/cybersecurity-soc-analyst-l2-support-incident-response-threat-hunting\/","title":{"rendered":"Cybersecurity SOC Analyst \u2013 L2 Support (Incident Response &#038; Threat Hunting)"},"content":{"rendered":"\n<p>\u200bThis is a full-time, <strong>Remote<\/strong> <strong>SOC Analyst II<\/strong> role at UST, a large digital transformation firm. Despite the &#8220;L2&#8221; title in the header, the requirements specifically look for <strong>L3-level experience<\/strong> to act as a high-tier escalation point for critical security incidents. The role focuses on deep-dive investigations, analyzing adversary TTPs, and performing proactive threat hunting across global client environments.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Location:<\/strong> Remote (US Market).<\/li>\n\n\n\n<li>\u200b<strong>Compensation Range:<\/strong> <strong>$46,000 \u2013 $69,000<\/strong> (Note: This is unusually low for the required L3 experience level).<\/li>\n\n\n\n<li>\u200b<strong>Experience Required:<\/strong> Minimum <strong>3+ years of experience as a SOC L3 Analyst<\/strong> working within a Global SOC team.<\/li>\n\n\n\n<li>\u200b<strong>Focus:<\/strong> High-severity incident escalation, root cause validation, and identifying Advanced Persistent Threats (APTs) that evade automated detection.<\/li>\n\n\n\n<li>\u200b<strong>Technical Stack:<\/strong> SIEM platforms including <strong>QRadar, Sentinel, and Splunk<\/strong>.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">\u200bThe Opportunity: Advanced Analysis and Risk Mitigation<\/h2>\n\n\n\n<p>\u200bThe L2\/L3 Analyst is responsible for moving beyond basic alert triaging into complex forensic analysis and process improvement.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Escalation &amp; Investigation:<\/strong> Act as the primary escalation point for <strong>high and critical severity incidents<\/strong>, determining the potential impact and extent of compromise.<\/li>\n\n\n\n<li>\u200b<strong>Adversary Analysis:<\/strong> Analyze attack patterns and <strong>Tools, Techniques, and Procedures (TTPs)<\/strong> to map out the attack life cycle.<\/li>\n\n\n\n<li>\u200b<strong>Threat Hunting:<\/strong> Proactively hunt for <strong>Indicators of Compromise (IOCs)<\/strong> and signs of APTs using in-depth log analysis.<\/li>\n\n\n\n<li>\u200b<strong>Remediation Guidance:<\/strong> Provide recommendations for security control policy changes, security hygiene improvements, and vulnerability mitigation.<\/li>\n\n\n\n<li>\u200b<strong>Process Engineering:<\/strong> Identify gaps in existing security workflows and <strong>propose enhancements<\/strong> to incident response methodologies.<\/li>\n\n\n\n<li>\u200b<strong>Playbook Development:<\/strong> Experience in writing procedures, <strong>runbooks, and playbooks<\/strong> to standardize response efforts.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">\u200bWhat You Need: Technical and Professional Requirements<\/h2>\n\n\n\n<p>\u200bThe ideal candidate must be a &#8220;practical problem solver&#8221; with a deep background in global security operations and a strong command of enterprise SIEM tools.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Core Experience:<\/strong> 3+ years in a <strong>Global SOC<\/strong> environment specifically at an L3 level.<\/li>\n\n\n\n<li>\u200b<strong>SIEM Expertise:<\/strong> Hands-on experience with major vendors: <strong>IBM QRadar, Microsoft Sentinel, and Splunk<\/strong>.<\/li>\n\n\n\n<li>\u200b<strong>Incident Response:<\/strong> Proven ability to gather evidence, validate root causes, and analyze compromise extent using client-specific security toolsets.<\/li>\n\n\n\n<li>\u200b<strong>Collaboration:<\/strong> Strong ability to work directly with a customer\u2019s internal IT and security teams to resolve issues.<\/li>\n\n\n\n<li>\u200b<strong>Professionalism:<\/strong> Maintain high customer satisfaction through proactive and personal service.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>\u200bThis is a full-time, Remote SOC Analyst II role at UST, a large digital transformation firm. Despite the &#8220;L2&#8221; title in the header, the requirements specifically look for L3-level experience to act as a high-tier escalation point for critical security incidents. The role focuses on deep-dive investigations, analyzing adversary TTPs, and performing proactive threat hunting [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"menu_order":0,"template":"","jobpost_category":[43],"jobpost_job_type":[39],"jobpost_location":[1041],"jobpost_tag":[3891,3655,1261,3890,81,3892,3888,3178,3893,3889],"class_list":["post-848","jobpost","type-jobpost","status-publish","hentry","jobpost_category-it","jobpost_job_type-remote","jobpost_location-united-states","jobpost_tag-46k-69k","jobpost_tag-3-years-experience","jobpost_tag-incident-response","jobpost_tag-l2-l3-support","jobpost_tag-remote","jobpost_tag-siem-qradar-sentinel-splunk","jobpost_tag-soc-analyst","jobpost_tag-threat-hunting","jobpost_tag-ttps-apts","jobpost_tag-ust"],"_links":{"self":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost\/848","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost"}],"about":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/types\/jobpost"}],"author":[{"embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/users\/1"}],"wp:attachment":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/media?parent=848"}],"wp:term":[{"taxonomy":"jobpost_category","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_category?post=848"},{"taxonomy":"jobpost_job_type","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_job_type?post=848"},{"taxonomy":"jobpost_location","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_location?post=848"},{"taxonomy":"jobpost_tag","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_tag?post=848"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}