
L2 Security Analyst
Posted 5 hours ago

Posted 5 hours ago
This is a fully remote position, open to applicants in Romania.
• Oversee the analysis of high-severity, ambiguous, or rapidly evolving incidents utilizing available security telemetry and case evidence.
• Identify the likely root cause, impacted identities and assets, potential scope, and the most critical next steps.
• Employ targeted hunting and hypothesis-testing methodologies to validate suspicious activities and reveal related actions that may not be evident from the initial alert.
• Generate clear investigation documentation and evidence-based response recommendations that facilitate timely decision-making through the customer approval process.
• Assist in customer-facing incident management by transforming technical findings into usable evidence summaries and actionable next-step recommendations within the established case workflow.
• Evaluate escalations from Level 1 analysts and aid in advancing challenging cases without unnecessary redundancy.
• Provide scheduled weekly on-call escalation support following the agreed-upon service protocol.
• Recognize visibility gaps, weak alert contexts, and recurring investigative challenges that should contribute to detection tuning, playbook enhancement, or workflow optimization.
• Suggest practical automation solutions where repetitive investigative tasks can be expedited or standardized.
• Foster the technical development of other analysts through case guidance, reviews, and operationally relevant feedback.
• 3-5+ years of pertinent experience in cybersecurity operations, incident response, or MDR delivery.
• Extensive hands-on experience in SOC, MDR, or incident response roles.
• Practical expertise in investigations across endpoints, identities, email, cloud, networks, and case evidence.
• Strong analytical capabilities for investigation, hunting, and validating suspicious activities.
• Capacity to evaluate scope, impact, and urgency in high-severity incidents.
• Proficiency in producing evidence-based recommendations and clear escalation or response documentation.
• Excellent written and verbal communication skills in English.
• Ability to mentor Level 1 analysts through technically challenging casework.
• Responsible AI literacy.
• Regular use of AI tools to enhance productivity, automate, or minimize repetitive tasks.
• Consultative approach: Capability to articulate technical risks to non-technical business stakeholders.
• Proactive mindset: A proven track record of self-directed learning (e.g., establishing a home lab, engaging with security researchers).
• Medical benefits.
• Gym support.
• Personalized fitness options.
• Team events.
• Healthy Habits Club.
Gartner
FS-ISAC
Proficio
Velera
Get handpicked remote jobs straight to your inbox weekly.