jobloom

JobLoom finds jobs directly from company career sites before many job boards, then routes you into detailed role pages like this one.

operations

Posted 7 hours ago

Security Operations Analyst (mid level)

at Saronic

Austin, United StatesOn-site
AWSAzurePython

Requirements

  • JOB OVERVIEW As a SecOps Analyst at Saronic, you'll be on the front line of our detection and response operations, triaging and investigating security alerts across endpoint, cloud, identity, network, and SaaS telemetry using our SIEM and XDR platforms.
  • experience in a Security Operations, detection engineering, or incident response role - Demonstrated
  • experience triaging and investigating alerts across at least two of the following: endpoint, cloud, identity, network, or SaaS environments - Hands-on proficiency with enterprise SIEM platforms and their query languages; ability to write and iterate on detection logic from scratch -
  • Experience with EDR tooling in an operational context; ability to hunt, triage, and respond using endpoint telemetry - Solid understanding of attacker TTPs mapped to MITRE ATT&CK, and the ability to apply that knowledge during active investigations -
  • Experience writing or iterating on detection logic, response playbooks, or SOC operational documentation - Scripting proficiency in Python, PowerShell, or Bash for alert enrichment, automation, or triage support - Strong understanding of network fundamentals: TCP/IP, DNS, HTTP/S, firewall and proxy logs, and lateral movement patterns - Clear and structured written and verbal communication — you can brief a non-technical stakeholder and write a thorough incident report - Ownership mindset: you follow
  • Experience with XDR platforms and cross-domain correlated detection across endpoint, identity, and cloud - Familiarity with cloud-native security operations and log sources in AWS or Azure environments -
  • Experience with SOAR platforms or building response automation workflows - Exposure to supply chain and CI/CD pipeline security monitoring - Familiarity with data lake-based or pipeline-driven detection architectures -
  • Experience operating in or supporting classified, GovCloud, or FedRAMP environments - Background in defense, aerospace, robotics, or other high-assurance operational environments - Familiarity with compliance frameworks such as NIST SP 800-171, NIST SP 800-53, or CMMC - Relevant certifications: GIAC GCIH, GCIA, GCFE, BTL1/2, CySA+, OSCP, or equivalent - Active security clearance or prior clearance history is a strong differentiator PHYSICAL DEMANDS - Prolonged periods of sitting at a desk and working on a

Experience

  • QUALIFICATIONS - 3+ years of hands-on

Benefits

  • BENEFITS Medical Insurance: Comprehensive health insurance plans covering a range of services Saronic pays 100% of the premium for employees and 80% for dependents Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents Time Off: Generous PTO and Holidays Parental Leave: Paid maternity and paternity leave to support new parents Competitive Salary: Industry-standard salaries

Contact

  • Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3) https://www.govinfo.gov/link/uscode/8/1324b.

Additional details

  • Saronic Technologies is a leader in revolutionizing autonomy at sea, dedicated to developing state-of-the-art solutions that enhance maritime operations through autonomous and intelligent platforms.
  • You'll run root cause analysis on real events, lead initial response for mid-tier incidents (contain, eradicate, recover), and tune detections to cut down on noise and sharpen what actually matters.
  • Beyond the day-to-day, you'll join the on-call rotation, run targeted threat hunts to catch what automation misses, help build out our playbooks and runbooks, and contribute to post-incident reviews that turn gaps into real improvements.
  • This is an early, formative role on a SecOps team being built from the ground up, so you'll have a direct hand in shaping how we operate, with room to grow across security domains rather than being boxed into one lane.
  • RESPONSIBILITIES Detection & Alert Operations - Monitor and triage security alerts across endpoint, cloud, identity, network, and SaaS telemetry using enterprise SIEM and XDR platforms - Perform in-depth alert investigation and root cause analysis, documenting findings with clear, structured timelines and impact assessments - Tune detections to reduce false positive noise and improve signal fidelity; contribute to detection-as-code pipelines using structured query languages - Operate across multiple
  • As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S.
  • Saronic does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity or any other reason prohibited by law in provision of employment opportunities and benefits.
  • We are also committed to providing reasonable accommodations for qualified individuals with disabilities.

Find more real-time jobs on JobLoom.