Senior Threat Analyst, Romania

This is a fully remote position, open to applicants in Romania.

📋 Description

• Oversee shift operations and manage response activities within the MDR SecOps team during designated shifts.

• Coach and support junior analysts by offering technical guidance and escalation assistance for intricate investigations.

• Manage comprehensive analysis of complex threats, coordinating multi-analyst inquiries and ensuring thorough scope evaluations.

• Facilitate technical decision-making during critical incidents, identifying escalation routes and resource distribution.

• Spearhead threat hunting initiatives throughout the MDR customer network and coordinate team efforts.

• Enhance detection logic by collaborating with engineering teams to minimize false positives and improve detection efficiency.

• Act as a subject matter expert on advanced persistent threats, zero-day vulnerabilities, and emerging attack vectors.

• Facilitate collaboration across various projects and functions.

• Utilize, maintain, and develop internal playbooks, investigation protocols, and technical documentation.

• Manage client escalations for high-severity incidents, delivering technical briefings and coordinating remediation actions.

• Engage in continuous improvement efforts within the SOC, identifying process deficiencies and implementing corrective measures.

• Supervise shift transitions to ensure uninterrupted 24/7 operations across global teams.

• Conduct detailed malware analysis as necessary for complex investigations.

• Represent the SOC in technical discussions with product teams, threat research, and customer success organizations as needed.

• Ensure knowledge sharing and capability growth within the analyst team through training and mentorship.

⛳️ Requirements

• A minimum of 5 years of progressive experience in a SOC or advanced cybersecurity roles with proven leadership skills.

• Advanced proficiency in endpoint and network security tools (EDR/XDR, SIEM, threat intelligence platforms) and understanding of detection methodologies.

• In-depth knowledge of Windows and Linux (macOS is a plus) environments, including system internals, forensic artifacts, and attack surface evaluation.

• Demonstrated ability to lead incident response efforts, coordinate cross-functional teams, and manage complex security investigations.

• Experience in threat hunting with the capability to formulate hunting queries and behavioral analytics.

• Proven track record of mentoring junior analysts and enhancing team capabilities through knowledge sharing and training.

• Strong understanding of the MITRE ATT&CK framework, advanced persistent threat tactics, and emerging attack vectors.

• Experience with malware analysis and advanced forensic techniques for intricate threat investigations.

• Capability to oversee shift operations, manage global handovers, and maintain 24/7 SOC functionality.

• Experience collaborating with adjacent teams (engineering, product, threat research) to promote security enhancements and tooling improvements.

• Proven history of developing and implementing SOC processes, playbooks, and operational methodologies.

• Relevant industry certifications such as GCIH, GCFA, GNFA, CISSP, or equivalent are preferred.

• Bachelor's degree in Information Technology, Computer Science, Cybersecurity or a related field, or equivalent extensive practical experience.

• Proficient English communication skills with the ability to convey complex technical concepts to a diverse audience.

• Willingness to work rotating shifts, including nights, weekends, and holidays as part of 24x7x365 operations.

🏝️ Benefits

• Sophos promotes a remote-first working model, making remote work the primary option for most employees, although some positions may require a hybrid approach.

• Our team fosters innovation and creativity while maintaining a strong sense of fun and camaraderie.

• Employee-led diversity and inclusion networks that cultivate community and provide education and advocacy.

• Annual charity and fundraising initiatives alongside volunteer days for employees to support local communities.

• Global employee sustainability initiatives aimed at minimizing our environmental footprint.

• Worldwide fitness and trivia competitions to keep our bodies and minds engaged.

• Global well-being days for employees to unwind and recharge.

• Monthly well-being webinars and training sessions to support employee health and wellness.