Senior SOC Analyst - Remote Consulting Opportunity

About the Role

We are excited to offer a specialized part-time consulting opportunity for experienced SOC analysts in a fully remote setting. As a Senior SOC Analyst, you will leverage your expertise in alert triage, incident investigation, and Splunk-based analysis to support high-growth technology and enterprise partners in building next-generation SOC automation and AI-driven investigation systems. This role is pivotal in enhancing the quality and reliability of AI-supported security investigation workflows.

What You'll Do

• Review and evaluate SOC alerts and investigation outputs based on predefined scenarios and criteria.
• Distinguish true positives from false positives by validating investigative evidence and alert context.
• Perform end-to-end security investigations, including log analysis, entity pivoting, timeline reconstruction, and evidence correlation.
• Utilize Splunk extensively to pivot across logs, entities, and timelines, ensuring high-quality investigation workflows.
• Maintain clear and accurate documentation of investigative steps, assumptions, evidence, and conclusions.

Requirements

• 3+ years of hands-on experience as a SOC analyst in a production SOC environment.
• Strong understanding of alert triage, incident investigation workflows, and evidence-based decision-making under time constraints.
• Mandatory hands-on experience with Splunk, including conducting investigations and reasoning about SPL queries.
• Proven ability to evaluate SOC investigations and determine the validity of conclusions.
• Fluent English, both written and spoken, with strong documentation and communication skills.

Nice to Have

• Experience with Endpoint Detection and Response tools such as CrowdStrike Falcon or Microsoft Defender for Endpoint.
• Familiarity with cloud security logs and signals across AWS, Azure, or GCP.
• Basic scripting experience in Python or similar languages.

What We Offer

• Work on cutting-edge SOC automation and AI-driven investigation systems.
• Flexible scheduling as an independent contractor.
• Weekly payments via Stripe or Wise.
• Opportunity to collaborate with experienced SOC practitioners and AI teams.
• Join a global network of vetted security professionals.