Senior Threat Analyst 2 (Romania)

What You Will Do (Duties and Responsibilities)

Lead shift operations and coordinate response activities across the MDR SecOps team during assigned shifts
Mentor and guide lower tier analysts, providing technical expertise and escalation support for complex investigations
Oversee end-to-end analysis of sophisticated threats, coordinating multi-analyst investigations and ensuring comprehensive scope assessment
Drive technical decision-making during critical incidents, determining escalation paths and resource allocation
Lead threat hunting initiatives across the MDR customer base and coordinating team efforts
Refine detection logic, working with engineering teams to reduce false positives and improve detection efficacy
Serve as subject matter expert on advanced persistent threats, zero-day exploits, and emerging attack vectors
Coordinate cross-functional collaboration with adjacent projects
Use, maintain and develop internal playbooks, investigation methodologies, and technical documentation
Lead client escalations for high-severity incidents, providing technical briefings and coordinating remediation efforts
Participate in continuous improvement initiatives within the SOC, identifying process gaps and implementing solutions
Manage shift handovers and ensure seamless 24/7 operations across global teams
Conduct in-depth malware analysis when required for complex investigations
Participate as a SOC representative in technical discussions with product teams, threat research, and customer success organizations when needed
Ensure knowledge transfer and capability development across the analyst team through training and mentorship

What You Will Bring (Experience and Qualifications)

• 5+ years of progressive experience in a SOC or advanced cybersecurity roles with demonstrated leadership capabilities
• Advanced-level proficiency with endpoint and network security tools (EDR/XDR, SIEM, threat intelligence platforms) and ability to understand detection strategies
• Advanced knowledge of Windows, Linux (macOS is a plus) environments including system internals, forensic artifacts, and attack surface analysis
• Proven experience leading incident response efforts, coordinating cross-functional teams, and managing complex security investigations
• Background in threat hunting with ability to develop hunting queries, and behavioral analytics
• Demonstrated experience mentoring junior analysts and developing team capabilities through knowledge transfer and training
• Deep understanding of MITRE ATT&CK framework, advanced persistent threat tactics, and emerging attack vectors
• Experience with malware analysis and advanced forensic techniques for complex threat investigations
• Ability to manage shift operations, coordinate global handovers, and maintain 24/7 SOC effectiveness
• Experience working with adjacent teams (engineering, product, threat research) to drive security enhancements and tooling improvements
• Track record of developing and implementing SOC processes, playbooks, and operational procedures
• Industry certifications such as GCIH, GCFA, GNFA, CISSP, or equivalent are desirable
• Bachelor's degree in Information Technology, Computer Science, Cybersecurity or related field, or equivalent extensive practical experience
• Fluent English communication skills with ability to articulate complex technical concepts to diverse audiences
• Flexibility to work rotating shifts including nights, weekends, and holidays as part of 24x7x365 operations