Security Operations Staff

Overview

Monitor, investigate, and respond to cyber threats in a 24/7 SOC.

Key Responsibilities

• incident response
• threat hunting
• siem tuning
• playbook development
• case management
• security monitoring

Tasks

-Performs advanced investigations and leads incident response activities through containment, remediation, and recovery. -Applies company policies & procedures to resolve mostly routine issues.​​ -Provides mentorship and guidance to Level 1 analysts on triage quality, escalation criteria, indicators of attack/compromise, and case documentation. -Proactively hunts for indicators of compromise, anomalous patterns, or advanced threats across multiple data sources. -Develops and maintains cybersecurity documentation, including investigation reports, SOPs, playbooks, and authorization artifacts for systems under purview. -Assures all work processes are properly tracked in case management systems to support cybersecurity programs and audit requirements. -Works closely with senior analysts to develop investigation skills, understand root cause analysis, and improve technical depth. -Supports monitoring and basic troubleshooting of cybersecurity tools and systems under SOC purview. -Performs initial alert triage following SOC playbooks (EDR, SIEM, email security, web proxy, identity platforms, etc.). -Recognizes potential security issues, collects supporting evidence, documents findings, and escalates according to SOC procedures. -Analyzes and tunes detection logic (SIEM rules, EDR policies, alerting workflows) to reduce false positives and enhance coverage. -Applies company policies & procedures to resolve routine issues. -Assists with system audits to evaluate security posture, detect vulnerabilities or misconfigurations, and recommend corrective actions. -Supports incident post-mortems and root cause analysis, producing actionable insights to improve SOC processes. -Maintains situational awareness of SOC alerts and ongoing incidents, escalating any anomalies or deviations. -Assists in applying security controls and reports on their effectiveness as directed by senior analysts and SOC leadership. -Helps implement and monitor cybersecurity safeguards following standard operating procedures and guidance from senior team members. -Coordinates with security engineering teams on tool enhancements, automation improvements, and control optimizations. -Participates in incident response activities, including evidence gathering, log review, and incident documentation.

Requirements

• university hire
• us citizen
• entry-level
• 1-2 years
• professional concepts
• career development

What You Bring

-Learning to use professional concepts.​ -Entry-level position within field.​ -Level 1 Entry-level position within field.​ Learning to use professional concepts.​ Applies company policies & procedures to resolve routine issues. Level 2 Career development position within field​. Continues to learn and apply professional concepts.​ Applies company policies & procedures to resolve mostly routine issues.​​ -Typically requires a University Hire with 1-2 years of experience or 5-6 years of relevant work experience​​. -Must be a US citizen. -Continues to learn and apply professional concepts.​ -Must be a US Citizen. -Typically requires a University Hire with 2-5 years of experience or 6-9 years of relevant work experience​​.

People Also Searched For

Benefits

-Salary Range: $69,900 - $118,920 annually (Determined by function, education, experience, and qualifications of the applicant.)

About Bechtel

-Operates across multiple sectors, including infrastructure, nuclear, security and environmental, oil, gas, chemicals, mining, and metals, as well as manufacturing, battery production and technology. -Significant presence in North America, the Middle East, Asia, and Australia.

Sector Specialisms