SOC Analyst

Job Description

• Triage, investigate and escalate alerts as they occur in Wix environments (all analysts review all alert types - we don’t want to silo you!)

• Monitor and analyze Security Information and Event Management (SIEM) to identify security issues for remediation

• Pull data from multiple sources, including endpoint detection and response, internal data feeds, threat intelligence, and advanced phishing protection 

• Use a Security Orchestration & Automation (SOAR) system to inform and expedite your data analysis

• Work with our internal security and critical incident response teams to share knowledge, training, and best practices

• Recommend changes to standard operating procedures and similar documentation

• Respond to computer security incidents by collecting, analyzing and preserving digital evidence to ensure incidents are recorded and tracked in accordance with SOC requirements

• Generate end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty

Qualifications

• 1+ year experience as a first responder dealing with incoming requests on cyber security incidents in an IT/System role or one of the following certifications; AWS Certified Cloud Practitioner, Google Cloud Digital Leader, Microsoft Certified: Azure Fundamentals, or Cyber Security Preparation & SOC Analyst Course

• Strong knowledge of current security threats and techniques

• You’re dedicated and driven with a desire to research and learn more about the information security landscape and incident response

• You’re comfortable communicating in written and spoken English

• Experience with SIEM systems, big data platforms, SOAR platforms, and automation processes would be an advantage

Additional Information

We are Wix’s Security Guild. We’re a group of highly motivated Security Engineers that form part of the Wix R&D group. We allow Wix Developers and users to achieve their goals without risk, often meaning we find or create unique solutions. Our work is exceptionally challenging due to Wix’s scale, agility, and advanced technical diversity. When it comes to technology, we have the ultimate playground, and although we work together closely, there’s always space for independence, innovation, and creativity.

The Wix Security Operations Center provides fullstack security observability from the endpoints up to the application and network layers. Purpose-built for today’s evolving threat landscape, the Wix SOC combines cloud-optimized intrusion defense, continuous security monitoring and proactive actions to help security and operations teams detect security incidents, achieve compliance and secure infrastructure. Our SOC is manned 24x7x365, and this position will require working in shifts: some weekends, nights, evenings and days as part of a rotation.