Cetera Financial Group

Senior Security Operations Engineer

Cetera Financial Group$100K — $130K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5+ years of experience as a SOC Analyst or comparable role
  • 3+ years of hands-on experience with NexGen SIEM and M365 Security Suite
  • 5+ years of familiarity with incident response procedures
  • 5+ years of expertise in tools for analyzing malicious emails and malware
  • Proficient in various EDR solutions and security tools like Netskope and Qualys.

Responsibilities

  • Monitor and triage security events and alerts using Next-Gen SIEM and other tools
  • Analyze security incidents by correlating logs and telemetry to identify root causes
  • Conduct proactive threat hunting leveraging behavioral analytics and threat intel
  • Develop detailed reports on security incidents and recommend improvements
  • Collaborate with technology teams to enhance security policies and processes
  • Ensure adherence to SOC service-level agreements for incident response
  • Support after-hours incidents as part of the SOC on-call rotation

Benefits

  • Inclusive health, dental, vision, and life insurance plans
  • Access to mental health benefits for employees and their families
  • 20+ days of paid time off (PTO) plus paid holidays and wellness days
  • 401(k) savings plan with generous company contribution
  • Paid parental leave for all team members
  • Health Savings and Flexible Spending Account options
  • Employee Assistance Program (EAP), LifeLock, and pet insurance options
  • Paid caregiver leave for family support
Full Job Description
Job Description

We are seeking a skilled and experienced SOC Analyst to play a crucial role in monitoring and analyzing our organization's security infrastructure, detecting and responding to potential threats and incidents, and ensuring the overall security of our systems.

What you will do:
• Continuously monitor and triage security events and alerts across multiple platforms-such as Next-Gen SIEM, Microsoft 365 Defender, AWS native security, and other enterprise security tools-to identify anomalous activity, policy violations, and potential indicators of compromise (IOCs). This includes validating alert fidelity, escalating true positives, suppressing false positives, and maintaining situational awareness across the environment.
• Perform in depth analysis and investigation of security incidents by correlating logs, endpoint telemetry, network traffic, identity activity, and threat intelligence to determine root cause, scope, impact, MITRE ATT&CK technique alignment, and potential business risk. This includes detailed investigation timelines, document evidence, and recommend containment, eradication, and recovery actions.
• Conduct proactive threat hunting using hypotheses based on emerging threats, adversary TTPs, behavioral analytics, and environmental risk indicators. Leverage SIEM queries, EDR telemetry, cloud audit logs, and threat intel feeds to identify stealthy threats such as lateral movement, persistence mechanisms, privilege misuse, or unauthorized data access.
• Develop clear, concise, and accurate reports on security incidents, active threats, root cause findings, vulnerabilities, and trending patterns for SOC management, InfoSec leadership, and cross functional stakeholders. This includes post incident summaries, incident metrics, threat trend analysis, and recommendations to strengthen preventive and detective controls.
• Collaborate closely with internal technology teams-including Cloud Engineering, Network Security, IAM, DevOps, and Governance/Risk/Compliance-to enhance security policies, improve detection coverage, update response playbooks, refine log source onboarding, and support the continuous maturation of the SOC's operational processes. Participate in tabletop exercises, control tuning, and strategic security initiatives to improve the organization's security posture.
• Adhere to established Security Operations Center service-level agreements (SLAs) for alert triage, investigation, escalation, and incident response to ensure timely risk mitigation and operational efficiency. Additionally, maintain SLA compliance for incident documentation, ticket updates, handoff notes, and closure guidelines aligned with SOC operating procedures and regulatory expectations.
• Participate in the SOC on call rotation to provide after hours support for high severity security incidents, urgent investigations, and priority escalations. Responsibilities include responding to critical/high alerts within defined SLA timeframes, coordinating with cross functional teams during major incidents, and ensuring continuous coverage to maintain 24/7 operational readiness.
• Participate in other duties as assigned to support overall Security Operations Center efficiency and organizational objectives.

What you will have:
• 5+ years of experience working as a SOC Analyst or in a similar role.
• 3+ years of both knowledge and hands-on experience with NexGen SIEM, M365 Security Suite, Netskope, Proofpoint, Tanium, EDR solutions, and Qualys.
• 5+ years of experience with incident response procedures and methodologies.
• 5+ years of experience with specialized tools for analyzing malicious emails, malware, viruses, etc.

What we give you in return:

Not many teams can say that they support people's dreams coming to life. We happen to do that every day. And as important as we know your career is, we recognize that there's a whole lot more to life. To ensure that our employees can make the most of their time outside of working hours, we offer a competitive salary and for full-time roles, a benefits package including:
  • Inclusive health, dental, vision, and life insurance plans built to support diverse lifestyles, offer preventative care, and protect against hardship.
  • Easy access to mental health benefits to meet our team members and their families where they are.
  • 20+ days of paid time off (PTO), paid holidays, and 2 paid wellness days to give our employees the time they need to stay close with their loved ones, recharge, and give back to their communities.
  • 401(k) savings plan with a generous company contribution (up to 5%), and access to a financial professional to offer our employees the opportunity to plan-ahead for a strong financial future well beyond their working years.
  • Paid parental leave to support all team members with birth, adoption, and fostering.
  • Health Savings and Flexible Spending Account options to help you save money on healthcare, daycare, commuting, and more.
  • Employee Assistance Program (EAP), LifeLock, Pet Insurance and more.
  • Paid caregiver leave to provide time away from work when caring for an ill or recovering family member.
  • Additional benefits such as an Employee Assistance Program (EAP), identity theft protection (LifeLock), pet insurance, and other voluntary benefits to provide extra peace of mind

About Cetera Financial Group

Cetera Financial Group is a network of independent broker-dealer firms that provide financial advice to individuals and small businesses. The company was founded in 2010 and is headquartered in El Segundo, California. Cetera Financial Group offers a range of services, including investment advice, financial planning, and insurance products. The company has over 8,000 financial advisors and manages over $200 billion in assets.
Learn more about Cetera Financial Group
Size
8,000 employees
Industry
Founded
2010

Similar Jobs

More Jobs at Cetera Financial Group

More Information Technology Jobs

Find similar Senior Security Operations Engineer jobs: