Security Operations Center (SOC) Level 3 Analyst (100% Remote)

Our customer is a large United States insurance company that is backed by more than 100 years of experience and provides insurance products and services for businesses and professionals in the United States., Canada and Europe. Headquartered in Chicago, IL, they have more than 20 US locations.

We are seeking a contract SOC Analyst III to support our Customer's business needs. This role is 100% remote.

The SOC Analyst will proactively hunt for adversary activity within the network to detect and mitigate threats before they can achieve their mission. This role focuses on log analysis, network traffic analysis, and applying the MITRE ATT&CK framework to uncover sophisticated threats. The analyst will work closely with US SOC teams and global security functions to strengthen detection and response capabilities.

Hours: 4 pm-12:45 am CST (may vary)

Responsibilities:

• Proactively conduct real-time and historical analysis across the full security suite (SIEM, EDR, IDS, Firewalls, NDR, Email Security, Web Content Filtering, and Identity Management tools).
• Perform incident response triage to determine the scope and impact of potential attacks.
• Mentor junior SOC staff by providing quality control, feedback, and guidance.
• Stay updated on attacker tactics, techniques, and procedures (TTPs) to identify evolving threats.
• Collaborate with SOC, Intelligence, Incident Response, and Enterprise Security teams during investigations and threat hunts.
• Identify visibility gaps in the environment and recommend detection/mitigation solutions.
• Develop and maintain playbooks, processes, and detection capabilities using real-time feedback from investigations.
• Escalate advanced tasks (e.g., malware reverse engineering, deep forensics) to third-party vendors when required.
• Communicate incident details to technical and non-technical stakeholders clearly and effectively.
• Manage and complete assigned technical projects.
• Perform additional duties as needed.

Skills and Qualifications:

• 5+ years of technical experience in cybersecurity across multiple platforms, systems, and protocols.
• Hands-on familiarity with SOC operations, SIEM, SOAR, DFIR tools, and threat hunting methodologies.
• Strong understanding of the incident response lifecycle and cybersecurity best practices.
• Solid knowledge of IT security policies, controls, and relevant regulations (e.g., SOX, privacy standards).
• Strong analytical and problem-solving skills with proven ability to manage complex investigations.
• Excellent verbal and written communication skills; ability to explain technical issues to business leaders.
• Advanced proficiency with Microsoft Office Suite and other business-related systems.
• Ability to influence the adoption of security concepts across the business.

Preferred:

• Degree in Computer Science, Information Security, or related discipline (or equivalent experience).
• Experience in the insurance industry.
• Certifications such as CISSP, GCFA, GCIH, GCFE, or equivalent.

We offer a competitive salary range for this position. Most candidates who join our team are hired at the median of this range, ensuring fair and equitable compensation based on experience and qualifications.

Contractor benefits are available through our 3rd Party Employer of Record (Available upon completion of waiting period for eligible engagements)

Benefits include: Medical, Dental, Vision, 401k.

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.