Saviynt is seeking a motivated and detail-oriented L2 SOC Analyst to be a core member of its 24/7 operations team. The role involves investigating complex alerts, using automation to accelerate response, and leveraging deep cloud security expertise to stop advanced threats. The SOC team works in three rotating shifts to ensure continuous monitoring and response.

Requirements

Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
4-6 years of experience in a Security Operations (SOC) environment, with demonstrated L2 capabilities.
Cloud & Container Security Experience: Hands-on experience monitoring and responding to alerts in at least one major cloud provider (AWS, Azure, or GCP); fundamental knowledge on container security
Technical Expertise: Strong, hands-on experience with SIEM (e.g., CrowdStrike, Splunk, QRadar, Azure Sentinel) and EDR (e.g., CrowdStrike, SentinelOne) platforms.
AI/Automation Familiarity: Experience using a SOAR platform and familiarity with AI tools and their practical implementation.
Strong working knowledge of the MITRE ATT&CK framework and its application to incident analysis.
Willingness and ability to work in a 24/7 rotational shift environment (morning, afternoon, and night).
Review (initially and annually thereafter), understand, and adhere to Information Security/Privacy Policies and Procedures such as (but not limited to): Data Classification, Retention & Handling Policy, Incident Response Policy/Procedures, Business Continuity/Disaster Recovery Policy/Procedures, Mobile Device Policy, Account Management Policy, Access Control Policy, Personnel Security Policy, Privacy Policy

Benefits

Opportunity to work in a high-growth, Platform as a Service company focused on Identity Authority to power and protect the world at work.
Tremendous growth and learning opportunities through challenging yet rewarding work which directly impacts customers.
Welcoming and positive work environment.
Clear career path for growth into L3, threat hunting, or automation engineering roles.

Requirements

Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent practical experience.

4-6 years of experience in a Security Operations (SOC) environment, with demonstrated L2 capabilities.

Cloud & Container Security Experience: Hands-on experience monitoring and responding to alerts in at least one major cloud provider (AWS, Azure, or GCP); fundamental knowledge on container security

Technical Expertise: Strong, hands-on experience with SIEM (e.g., CrowdStrike, Splunk, QRadar, Azure Sentinel) and EDR (e.g., CrowdStrike, SentinelOne) platforms.

AI/Automation Familiarity: Experience using a SOAR platform and familiarity with AI tools and their practical implementation.

Strong working knowledge of the MITRE ATT&CK framework and its application to incident analysis.

Willingness and ability to work in a 24/7 rotational shift environment (morning, afternoon, and night).

Review (initially and annually thereafter), understand, and adhere to Information Security/Privacy Policies and Procedures such as (but not limited to): Data Classification, Retention & Handling Policy, Incident Response Policy/Procedures, Business Continuity/Disaster Recovery Policy/Procedures, Mobile Device Policy, Account Management Policy, Access Control Policy, Personnel Security Policy, Privacy Policy

Benefits

Opportunity to work in a high-growth, Platform as a Service company focused on Identity Authority to power and protect the world at work.

Tremendous growth and learning opportunities through challenging yet rewarding work which directly impacts customers.

Welcoming and positive work environment.

Clear career path for growth into L3, threat hunting, or automation engineering roles.

L2 SOC Analyst

About the role

Requirements

Benefits

Products

Use Cases

Insights

Resources

Browse Jobs

Company

L2 SOC Analyst

About the role

Requirements

Benefits

About Saviynt

Saviynt