Sorenson Communications · 3 days ago
Senior SOC Analyst
Salt Lake City, UT
Full-time
Onsite
Senior Level
7+ years expSorenson Communications is a leading language services provider focused on enhancing accessibility and inclusion through communication solutions. The Senior SOC Analyst will lead security investigations, manage incident response processes, and ensure a strong security posture across the organization.
TelecommunicationsVoIP
No H1B
Responsibilities
Oversee internal and external SOC resources (MSSP or internal teams), ensuring seamless collaboration, alignment and effective threat response
Define and manage SOC and Incident Response workflows, processes, and escalation procedures to maintain operational efficiency
Implement and maintain SOC and IR playbooks, runbooks, and automation to improve response times and reduce manual effort
Actively monitor security logs, SIEM alerts, and endpoint detections to identify potential threats
Lead and manage security investigations, ensuring accurate root cause analysis and timely mitigation
Manage and enhance incident response (IR) processes, including triage, containment, eradication, and recovery efforts
Leverage MITRE ATT&CK and similar frameworks to map incidents, assess gaps, and develop new detection logic
Conduct forensic analysis, malware investigations, and threat hunting to identify indicators of compromise (IOCs) and emerging threats
Utilize SOAR (Security Orchestration, Automation, and Response) platforms to automate response actions and improve incident handling efficiency
Investigate security incidents and recommend remediation actions to IT and business units
Work with security engineers to fine-tune SIEM correlation rules and alerting logic
Integrate external threat intelligence feeds into security monitoring tools and enhance threat detection and response capabilities
Conduct threat-hunting exercises to detect malicious activity not flagged by traditional monitoring
Track emerging threats, zero-day vulnerabilities, security advisories, adversary tactics, and security trends relevant to our environment. Provide executive reporting on incident trends, SOC effectiveness, and security improvements
Participate in red teaming and blue teaming and IR exercises
Support vulnerability scanning and analysis, ensuring full visibility into security gaps
Collaborate with IT teams to enforce patch compliance, particularly for critical and high-severity vulnerabilities
Provide reports on vulnerability trends, security risks, and remediation progress
Track and document compliance metrics such as Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR)
Conduct firewall rule reviews, cloud security assessments, and network security testing
Evaluate SIEM rules, endpoint security configurations, and cloud security controls for misconfigurations
Support vulnerability management efforts, ensuring timely remediation of identified risks
Assist in evaluating and testing new security tools, integrating them into SOC workflows
Act as a primary escalation point for MSSP investigations, ensuring appropriate response times and quality
Continuously assess MSSP effectiveness, ensuring SLAs and contractual obligations are met
Provide feedback on SOC detections, response procedures, and incident reporting from the MSSP
Partner with vendors to optimize security monitoring tools and improve detection logic
Qualification
Required
Minimum of 4 Year / Bachelors Degree In related field
7+ years of experience in Security Operations, Incident Response, and Threat Detection
3+ years leading cybersecurity investigations, incident handling, and response coordination
3+ years of experience managing and working with MSSPs, ensuring effective threat monitoring and response
Extensive Experience with SIEM solutions (i.e. DataSet, Splunk, Elastic, etc.)
Extensive Experience managing/EDR solutions (SentinelOne, CrowdStrike, Microsoft Defender ATP)
Familiarity with Rapid7 or similar vulnerability management platforms
Basic scripting (Python, PowerShell, Bash) for security automation
Deep understanding of MITRE ATT&CK, NIST CSF, and incident response frameworks
Deep understanding of network security, system hardening, and vulnerability management
Hands-on experience with forensics, log analysis, and threat-hunting methodologies
Hands-on experience with firewall reviews, cloud security validation, and SIEM tuning
Proficiency with forensics, malware analysis, and threat-hunting methodologies
Strong analytical and investigative skills with expertise in log analysis, threat correlation, and anomaly detection
Strong communication skills with the ability to work across IT, legal, and executive teams
Ability to work independently and in a fast-paced environment
Strong project management and leadership abilities with a focus on collaboration and continuous improvement
A strong team player with a good attitude
Highly self-motivated and directed
Keen attention to detail
Ability to effectively prioritize and execute tasks in a high-pressure environment
Preferred
CompTIA Security+, CEH (Certified Ethical Hacker), or GCIH (GIAC Certified Incident Handler), or GCIA (GIAC Certified Intrusion Analyst)
CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) or SOC Analyst-focused certifications
AWS/Azure security certifications
Benefits
Paid Vacation Time and Paid Sick Time and Paid Holidays
401k 6% match with immediate vesting
Nationwide Medical Insurance plans and coverage (Medical, Dental/Orthodontia, Vision)
+ TeleDoc
+ HSA company match
+ 3 Medical plan options including a Low Deductible PPO Medical Plan Offering
Employee Assistance Program
Engaged Employee Resource Groups
Outstanding Learning and Career Development Opportunities
Company
Sorenson Communications
Sorenson Communications provideS the highest-quality communication products and services to all deaf and hard-of-hearing individuals.
10001+ employees
Funding
Current Stage
Late StageLeadership Team
Paget Alves
Chairman & Chief Executive Officer
Maria Lensing
Global CIO and CTO
Recent News
thefastmode.com
2025-10-22
Company data provided by crunchbase