Lead Cyber Defense Center Analyst

Lead Cyber Security Operations Center (SOC) Analyst

State Street is seeking a Lead SOC Analyst to lead the triage, analysis, and response to cyber‑attacks. The successful candidate will join the Fusion Center, responsible for detecting and responding to cyber threats 24/7/365, and will participate in an on‑call rotation.

• Lead the cyber incident response process to ensure timely triage, analysis, containment, eradication, and return to service for high severity or long‑running incidents.
• Author incident status updates and closure reports for leadership.
• Produce post‑mortem reports to identify lessons learned and recommendations.
• Continuously prepare for incidents by updating and maintaining incident response plans, playbooks, and procedures.
• Manage and participate in cyber‑related exercises such as tabletop and cyber‑range simulations.
• Measure the effectiveness and performance of the incident response process through KRI and KPI metrics.
• Identify methods to continuously enhance the incident response process.
• Work closely with the SOC to drive development and collaboration.
• Train and mentor SOC personnel.
• Create an environment that drives knowledge sharing across teams within the Fusion Center.
• Help develop the 24/7 Fusion Center mindset and follow‑the‑sun model.

Required experience
:

• Investigating and managing major/complex cyber incidents end to end.
• Experience/leadership in a SOC or Fusion Center.
• Strong operating systems administration skills (Windows, Linux, Mac).
• Strong malware analysis expertise.
• Experience in performing memory forensics.
• Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks such as NIST, Mitre ATT&CK.
• Knowledge of IT architecture and operations (computing, network, storage, cloud).
• Strong working knowledge of security technologies including SIEM, EDR/EPP, AV, /PS, HIPS, web proxy/content filtering, AD, PKI, DNS.

Education & Preferred Credentials
:

• Degree in Cyber Security, Information Technology, Computer Science, or related field.
• 4+ years in a cyber security SOC/IR role (Incident Response, SOC Tier 3/Lead Analyst, Threat Hunter, Penetration testing, etc.).
• Certifications such as CISSP, CEH, OSCP, OSCE, or GCIH.
• Financial services experience a plus.
• Software development or scripting experience (Python, Power Shell, SQL) a plus.

$90,000 – $157,500 annually (primary location).

Employees are eligible to participate in State Street’s comprehensive benefits program, which includes a 401(k) plan with company match, health, dental, vision and other medical insurance, life insurance, long‑term disability, paid time off, assistance programs, and incentive compensation opportunities.

State Street is an equal opportunity employer and makes employment decisions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity, or expression, or other characteristics protected by law. All qualified applicants are encouraged to apply.