Senior SOC Analyst​/Threat Hunter; Deer Park, TX

Position: Senior SOC Analyst/Threat Hunter (Deer Park, TX, US, 77536)
Shape the Future with Us. At Lubrizol, we're transforming through science, sustainability, and a culture of inclusion. As part of our global team, you'll be empowered to make a real impact-on your career, your community, and the world around you.

Location:

Wickliffe, OH

Job Type: Permanent, Full Time, Hybrid: 4 days in Office, 1 day remote

How You'll Make an Impact

As a Senior SOC Analyst / Threat Hunter you'll be at the forefront of our innovation, driving prompt and reliable security monitoring and response services to enable business productivity. You'll collaborate with a diverse group of passionate individuals to deliver sustainable solutions to advance mobility, improve wellbeing, and enhance modern life. In this role, you will:

* Execute defined incident response playbooks to investigate security incidents. This includes clear documentation of incident artifacts and business impacts/concerns.

* Develop new investigation and response playbooks.

* Automate repetitive SOC tasks using Python, Power Shell, and SOAR platforms to improve response time and reduce analyst fatigue

* Leverage AI/ML-enhanced tools (e.g., SOAR platforms) to improve detection and response efficiency.

* Integrate MITRE ATT&CK and behavioral analytics into threat detection workflows.

* Conduct hypothesis-driven threat hunts using structured methodologies.

* Collaborate with threat intelligence platforms (e.g., MISP, Recorded Future) to enrich investigations.

* Design and execute proactive, hypothesis-based threat hunts across endpoints, networks, and cloud environments using behavioral indicators and threat models.

* Participate in the development and continual refinement of security group operating practices/processes.

* Provide training on tools and team processes for new analysts, Co-Ops, and Interns.

* Participates in definition of security policies, procedures, and standards. Implements, enhances, and execute security policies, procedures, and standards.

* Serve on projects and initiatives as a subject matter expert and technical advisor as assigned.

* Other information security activities as needed.

Required Qualifications that Enables Your Success

* Bachelor's degree in cybersecurity, or computer science or a related field with an equivalent combination of education and experience in cybersecurity

* 2 or more industry recognized cybersecurity certification (MAD, GSOC, GCIH, CEH, etc.)

* Minimum of 7 years' experience in cybersecurity roles

* 4+ years working in a hands-on technical IT support role with strong understanding of networking, operating systems, and Microsoft Active Directory.

* Excellent analytical and problem-solving skills, with the ability to assess complex security issues and develop effective solutions.

* Strong written and verbal skills.

* Familiarity with MITRE ATT&CK, Sigma rules, and YARA for threat detection.

* Experience with XQL, KQL, or other query languages for large-scale data analysis

* Ability to build relationships and work in a collaborative, matrix-driven, global environment.

* Strong IT process discipline

* Sound decision making, proactive/creative problem solving and strategic thinking skills.

* Must be a self-starter, able to manage multiple priorities and meet deadlines while providing quality customer service to internal and external stakeholders.

* Knowledge and experience with security access administration systems and processes

* Knowledge and experience with Windows operating systems and Microsoft Active Directory

* Familiarity with industry standards and frameworks (e.g. NIST, CIS Critical Security Controls, SANS, etc.)

Preferred Qualifications that Drive you Forward

* Programming skills necessary to build and maintain interfaces between security tools or automate security processes.

* Experience with AI/ML-based threat detection and automated playbook development.

* Familiarity with threat modeling frameworks and adversary emulation.

* Exposure to OT/ICS environments

* Threat Hunting experience and familiarity with Threat intelligence programs (Recorded Future, Threat Grid, etc.)

* Experience supporting full vendor stack security applications such as SIEM (Cortex/XSIAM), IDS/IPS, endpoint protection, and vulnerability scanners experience

* Project management skills to handle multiple concurrent assignments in a timely manner.

Your Work Environment

At Lubrizol, we're committed to providing a safe, inclusive, and empowering environment where you can do your best work-whether in a lab, on the production floor, or in a hybrid office setting. Depending on your role, your work environment may include:

* Standing, walking, or operating equipment for extended periods

* Working in a lab or manufacturing setting with appropriate PPE provided

* Use of computers and digital tools in an office or hybrid environment

* Occasional lifting or movement of materials

* Adherence to rigorous safety protocols and ergonomic standards

We continuously invest in our facilities and technologies to ensure they support your well-being, productivity, and…