Full Job Description
We are seeking a motivated SOC Analyst I to serve as the first line of defense within our Security Operations Center. In this role, you will be responsible for actively monitoring and triaging security alerts across Microsoft Sentinel, Defender XDR, Entra ID, threat intelligence platforms, performing initial investigations, and escalating validated threats to Tier 2 analysts. You will leverage available telemetry, including identity, endpoint, and network data, to assess suspicious activity, support incident response efforts, and ensure accurate documentation of findings. This role also contributes to maintaining operational efficiency by following established playbooks, identifying recurring alert patterns, and supporting ongoing improvements to SOC processes, automation, and documentation. The ideal candidate is detail-oriented, analytical, eager to grow in cybersecurity, and comfortable working in a fast-paced operational environment. This position plays a critical role in early threat detection, consistent alert handling, and maintaining security visibility across Strada.
Key Responsibilities:
• Monitor and respond to security alerts from Microsoft Sentinel, Microsoft Defender XDR, ZeroFox, and Entra ID related activity
• Perform initial triage of alerts to determine severity, scope, and whether activity is malicious or a false positive
• Conduct basic investigations using available telemetry from Azure, Endpoint, Office, etc
• Utilize Kusto Query Language (KQL) to query logs and validate suspicious activity when required
• Escalate validated or high-risk alerts to Tier 2 analysts with clear documentation, supporting evidence, and timelines
• Follow established SOC playbooks and SOP during alert handling and investigations
• Document all investigations and actions taken in the case management system (ServiceNow) with accuracy and clarity
• Track and identify recurring alerts or patterns in the environment and report findings to support detection tuning efforts
• Support incident response efforts by collecting relevant artifacts and assisting Tier 2 in identifying potential root cause
• Provide feedback on SOC processes, playbooks, and workflows to improve operational efficiency
• Assist with projects and ongoing efforts to create documentation, support automation initiatives, and review legacy SOC processes
• Ensure timely response and adherence to SLAs for alert acknowledgment, triage, and escalation
• Assist Compliance teams with audit requests by retrieving and organizing relevant security log data from Sentinel
Qualifications and Experience:
• 0-2 years of experience working in a SOC, security operations, or related technical role
• Experience using a query language (e.g., KQL, SQL) to analyze data and investigate anomalies
• Basic understanding of security concepts, including Active Directory/Entra ID, network security, and authentication flows
• Foundational knowledge of Microsoft Azure (e.g., Azure Subscriptions, Enterprise Applications, and Virtual Networks)
• Familiarity with security tools such as Microsoft Sentinel and Defender XDR
• Experience working with ServiceNow or similar ticketing/case management platforms
• Exposure to threat hunting or validating threats using OSINT or threat intelligence sources
• Strong analytical and problem-solving skills with attention to detail
• Strong communication and collaboration abilities
• Ability to express risk and probability to stake holders
• Relevant certifications such as CompTIA Security+, Microsoft SC-200, eJPT, CPTS, or equivalent are a plus
Benefits
At Strada, we support your whole self-offering a range of benefits for your health, wellbeing, finances, and future. These include health coverage, wellbeing programs, paid leave (vacation, sick, parental), retirement plans, learning opportunities, and more.
We offer you a competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization.
Salary Pay Range
Minimum - Maximum:
$64,120.00 - $119,080.00
Pay Transparency Statement: Strada considers a variety of factors in determining whether to extend an offer of employment and in setting the appropriate compensation level, including, but not limited to, a candidate's experience, education, certification/credentials, market data, internal equity, and geography. Strada makes these decisions on an individualized, non-discriminatory basis. Bonus and/or incentive eligibility are determined by role and level.