Senior SOC Analyst

Trianz is a leading-edge technology platforms and services company that accelerates digital transformations at Fortune 100 and emerging companies worldwide.

Senior SOC Analyst

Contract – 12 months

North Andover, MA;
Hybrid – 3 days per week at the customer office location

We are seeking a highly skilled Senior SOC Analyst to strengthen our cybersecurity detection engineering function. This role will focus on designing, standardizing, and optimizing detection logic across key security tools to elevate overall detection quality and reduce noise. The ideal candidate brings deep experience creating high‑fidelity endpoint detections, enriching alerts with vulnerability data, and collaborating with SOC and threat intelligence teams.

• Design, build, and refine high-quality detection logic in Crowd Strike Falcon and Sentinel One (S1).
• Develop standardized detection engineering workflows, documentation, and quality controls.
• Conduct regular tuning of existing detections to improve fidelity and reduce false positives.
• Translate threat intelligence, adversary TTPs, and ATT&CK-based behaviors into actionable detections.

• Leverage vulnerability data from Rapid7 to create context‑rich detections and improve alert prioritization.
• Validate detection performance through testing, simulation, and SOC feedback loops.
• Collaborate with SOC teams to ensure detections align with operational requirements and response workflows.

• Work closely with SOC Operations, Threat Intelligence, and Security Engineering teams to align detection logic with evolving threat landscapes.
• Maintain a clear boundary between detection engineering and automation or SOAR workflows.
• Provide subject‑matter expertise and mentorship to junior analysts.

• Be part of a rapidly rising, global technology innovator whose platforms are engaged by Fortune 1000 companies and industry leaders such as Microsoft & Amazon.
• Immerse yourself in a culture where creativity is celebrated and encouraged.
• Engage in thrilling projects and opportunities for your professional growth.
• Contribute to our quest to redefine the industry.
• Competitive compensation and benefits with distinctive perks.

• A minimum of 12 years of overall experience in IT Infrastructure domains, including at least 5 years of hands‑on experience in Security Operations, Detection Engineering, or related cybersecurity functions.
• 5 years in Security Operations, Detection Engineering, Threat Hunting, or Incident Response.
• Proven hands‑on experience creating detections in Crowd Strike Falcon.
• Proven hands‑on experience creating detections in Sentinel One (S1).
• Experience enriching and correlating security signals using Rapid7 or similar vulnerability management tools.

• Strong understanding of SOC workflows, alert triage, incident response, and threat hunting methodologies.
• Expertise mapping detections to frameworks like MITRE ATT&CK, CIS, and NIST.
• Ability to convert threat intelligence reports into high‑fidelity detection logic.
• Familiarity with the detection lifecycle management: design → test → tune → deploy → monitor.

Bachelor’s degree in computer science, electrical engineering, cybersecurity, information security, or a related field preferred.

Trianz is an Equal Opportunity Employer and does not discriminate based on race, color, creed, national or ethnic origin, gender, religion, disability, age, political affiliation or belief, special needs veteran, veteran of the Vietnam Era, or citizenship status (except in those special circumstances permitted or mandated by law). We comply with all state and federal laws and regulations protecting employees and applicants against illegal discrimination, retaliation, and harassment.

Our policy is available upon request. Trianz participates in the E‑Verify program in certain locations, as required by law. We are committed to providing reasonable accommodation for all qualified individuals with a disability or other reasons protected by applicable laws.