This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Senior MDR Analyst based in the United States.
In this role, you will operate at the frontline of advanced cyber defense within a high-performance Security Operations Center (SOC), focusing on deep threat detection, investigation, and response across diverse customer environments. You will analyze complex security events, uncover stealthy adversary behavior, and escalate or lead advanced intrusion investigations. The role blends hands-on threat hunting, incident response, and analytical reporting, with a strong emphasis on proactive detection rather than reactive alert triage. You will collaborate closely with fellow analysts and cross-functional security teams to strengthen detection capabilities and improve operational maturity. This is a highly technical, impact-driven position where your findings directly protect customers from real-world cyber threats. The environment is fast-paced, mission-oriented, and centered on continuous learning and operational excellence.
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Senior MDR Analyst based in the United States.
In this role, you will operate at the frontline of advanced cyber defense within a high-performance Security Operations Center (SOC), focusing on deep threat detection, investigation, and response across diverse customer environments. You will analyze complex security events, uncover stealthy adversary behavior, and escalate or lead advanced intrusion investigations. The role blends hands-on threat hunting, incident response, and analytical reporting, with a strong emphasis on proactive detection rather than reactive alert triage. You will collaborate closely with fellow analysts and cross-functional security teams to strengthen detection capabilities and improve operational maturity. This is a highly technical, impact-driven position where your findings directly protect customers from real-world cyber threats. The environment is fast-paced, mission-oriented, and centered on continuous learning and operational excellence.
Accountabilities:
- Conduct advanced analysis of anomalous network and endpoint activity, identifying malicious behavior and potential intrusions across customer environments.
- Perform leadless and proactive threat hunting to uncover hidden threats and emerging attack patterns.
- Investigate security alerts from EDR, NGAV, and other telemetry sources, supporting full incident response lifecycles.
- Develop detailed incident reports and communicate findings clearly to both technical teams and non-technical stakeholders.
- Collaborate with MDR analysts and security teams to research emerging threats and improve detection methodologies.
- Contribute to SOC process improvements, playbooks, and operational procedures to increase efficiency and response quality.
- Build and utilize test environments to simulate attacks and analyze adversary techniques for detection improvements.
- Review and correlate sandbox outputs and forensic artifacts to extract indicators of compromise (IOCs).
- 5+ years of experience in cybersecurity, with prior work in a Security Operations Center (SOC).
- Hands-on experience triaging and investigating endpoint events using EDR, NGAV, and related tools.
- Strong understanding of Windows environments, with working knowledge of Linux and/or macOS.
- Experience identifying malware behavior, anomalous network activity, and system-level compromise indicators.
- Familiarity with SIEM and log analysis tools, including ELK stack components.
- Scripting or automation experience using Python, PowerShell, and/or Go.
- Knowledge of cloud environments such as AWS (EC2, S3, IAM) and Azure/M365.
- Proven ability to conduct threat hunting and investigate complex security patterns.
- Strong analytical thinking with the ability to break down and resolve ambiguous security problems.
- Excellent communication skills, with the ability to clearly present technical findings to diverse audiences.
- Competitive base salary: $115,000 – $123,000 USD
- Equity opportunities as part of the compensation package
- Health, dental, vision, and life insurance coverage
- 401(k) retirement savings plan
- Discretionary paid time off policy
- Monday–Friday day shift schedule for work-life balance
- Exposure to advanced threat intelligence and national security-grade technologies
- Collaborative, high-performance SOC environment with strong learning opportunities.
In this role, you will be responsible for investigating, analyzing, and responding to advanced security threats across a 24/7 SOC environment, with a strong emphasis on proactive threat hunting and deep technical analysis. You will serve as an escalation point for complex incidents while helping refine detection and response processes across the organization.
Requirements
The ideal candidate brings strong experience in cybersecurity operations and a deep understanding of endpoint, network, and system-level threat analysis. You are highly analytical, detail-oriented, and comfortable working in fast-moving, high-stakes environments where precision and clarity matter.