Endpoint Security Analyst

The SOCaaS Endpoint Security Analyst is responsible for monitoring, detecting, analyzing, and responding to security threats targeting endpoint devices across customer environments. This role operates within a 24x7 Security Operations Center-as-a-Service (SOCaaS) model, leveraging Endpoint Detection and Response (EDR), Extended Detection and Response (XDR), and other security telemetry to identify malicious activity, contain threats, and support incident response.

Key Responsibilities

• Monitor endpoint security alerts generated by EDR/XDR, antivirus, and endpoint management tools
• Perform triage, investigation, and analysis of endpoint-related security incidents
• Identify indicators of compromise (IOCs) and suspicious behaviors across endpoint telemetry
• Contain and remediate endpoint threats (e.g., isolate hosts, terminate processes, remove malware) in accordance with SOC playbooks
• Escalate confirmed incidents based on severity a...