Cybersecurity SOC Analyst

Job Overview

Plan A Technologies is seeking a Cybersecurity SOC Analyst to support daily monitoring, analysis, and documentation in the Security Operations Center. The role involves monitoring logs, escalating threats, maintaining SOC documentation, supporting audits and control evidence preparation, and strengthening overall security posture within established SLAs. This position plays a critical role in operational defense, compliance readiness, and ongoing organizational resilience. Candidates must have at least 3+ years of experience in a SOC or related security role.

• Perform Tier 1 and Tier 2 SOC activities, including log monitoring, alert analysis, and threat escalation.
• Investigate security events and elevate findings in accordance with established runbooks and SLAs.
• Maintain situational awareness of the security environment, emerging threats, and potential risks.
• Support daily operational tasks to ensure consistent 24/7 security coverage (as applicable).
• Perform ongoing Microsoft 365 log monitoring across core services (Azure AD/Entra , Exchange Online, SharePoint, Teams) to identify security events, performance issues, and anomalous activity.
• Support endpoint management and security for Windows and macOS devices, including monitoring device compliance, patch status, and configuration baselines.
• Provide desktop and helpdesk support as part of a combined role, serving as the primary point of contact for end‑user technical issues.

• Prepare and maintain SOC documentation required for SOC 1 and SOC 2 audits, ensuring accuracy and readiness.
• Provide ongoing support, documentation, and monitoring for SOC controls and evidence collection.
• Generate clear, detailed incident reports, threat findings, and vulnerability summaries.
• Maintain audit‑ready documentation for assessments, penetration tests, and resilience exercises.

• Assist with vulnerability scanning, validation, prioritization, and tracking.
• Document remediation recommendations and coordinate escalation with engineering teams.
• Support vulnerability management reporting and compliance‑driven remediation timelines.
• Review, analyze, and elevate alerts related to authentication failures, suspicious sign‑ins, data access, and service health issues.

• Maintain SOC documentation related to business resilience and continuity readiness.
• Assist in cybersecurity phishing campaigns, including execution, tracking, reporting, and program improvements.
• Support internal stakeholders during audits, pen tests, and security review exercises.

• Work closely with the Cybersecurity, IT, and Cloud Engineering teams to improve visibility, detection, and response.
• Participate in meetings, ticket reviews, and knowledge‑sharing sessions.
• Assist in maintaining and improving SOC runbooks, processes, and response playbooks.

• BS in Computer Science, Software Engineering or equivalent practical experience.
• 3+ years of experience in a SOC, cybersecurity operations, or related security role.
• Experience with security log monitoring, alert triage, and incident escalation.
• Familiarity with SIEM tools, detection systems, and ticketing workflows.
• Understanding of vulnerability management concepts and security scanning tools.
• Basic knowledge of common security frameworks and controls (SOC 1/SOC 2, NIST CSF, ISO 27001).
• Experience supporting audits, evidence gathering, or compliance programs.
• Foundational certifications such as Security+, CySA+, CC, or relevant GIAC certifications are a plus.
• Familiarity with phishing campaigns, security training, or user awareness programs.
• Experience with cloud security monitoring (AWS preferred).
• Strong written communication skills for documentation and reporting.
• Detail‑oriented, organized, and comfortable working in process‑driven environments.
• Strong communication skills and ability to collaborate across cross‑functional teams.
• Solid written and verbal English skills.
• Ability to maintain a positive work attitude.
• Initiative and drive to do great things.

Generous vacation schedule, brand‑new laptop, and other goodies.

Work From Home 100% of the time, or come in to one of our global offices—up to you.

We’re looking forward to hearing from qualified candidates.