Security Operations Analyst

About AlphaSense: 

The world’s most sophisticated companies rely on AlphaSense to remove uncertainty from decision-making. With market intelligence and search built on proven AI, AlphaSense delivers insights that matter from content you can trust. Our universe of public and private content includes equity research, company filings, event transcripts, expert calls, news, trade journals, and clients’ own research content.

The acquisition of Tegus by AlphaSense in 2024 advances our shared mission to empower professionals to make smarter decisions through AI-driven market intelligence. Together, AlphaSense and Tegus will accelerate growth, innovation, and content expansion, with complementary product and content capabilities that enable users to unearth even more comprehensive insights from thousands of content sets. Our platform is trusted by over 6,000 enterprise customers, including a majority of the S&P 500. Founded in 2011, AlphaSense is headquartered in New York City with more than 2,000 employees across the globe and offices in the U.S., U.K., Finland, India, Singapore, Canada, and Ireland. Come join us!

About the Role

The Security Operations Center (SOC) Analyst is a position responsible for monitoring, analyzing, and triaging security events and alerts. This role supports the AlphaSense Security Operations Center by performing initial investigation and triage of potential security events and escalating them according to defined procedures. This role reports to the Security Operations Manager.

Alert triage and investigation

• Monitor and triage security alerts across SIEM, EDR, cloud security, identity and other platforms
• Perform initial investigation on escalated events, collecting and correlating evidence across log sources
• Execute containment and remediation actions under defined escalation thresholds
• Maintain accurate and timely documentation in the incident tracking system

Detection and threat intelligence

• Contribute to YARA-L rule development and tuning in Chronicle/Google SecOps
• Assist with CrowdStrike Falcon IOA and prevention policy maintenance
• Review and act on SOCRadar threat intelligence feeds, correlating IOCs against internal telemetry
• Identify detection gaps and recommend coverage improvements

Cloud and identity security

• Triage cloud security findings from environments
• Investigate identity anomalies including suspicious login patterns and MFA bypass attempts
• Support cloud IR investigations Log analysis

Program development

• Author and maintain SOC runbooks and triage playbooks
• Participate in knowledge transfer during shift handoff
• Support compliance-adjacent security activities

Who You Are

Basic Requirements

• 2–4 years of SOC, incident response, or security operations experience
• Bachelor's degree (B. Tech) from a Tier1, Tier2 institution.
• Hands-on experience with a SIEM platform (Chronicle, Splunk, Sentinel, or equivalent)
• Familiarity with EDR tooling (CrowdStrike Falcon preferred)
• Foundational understanding of cloud security concepts across AWS or GCP
• Working knowledge of identity threat patterns (credential stuffing, MFA fatigue, account takeover)
• Ability to read and interpret logs: authentication, network, endpoint, and cloud audit trails
• Strong written communication skills — clear, concise incident documentation and escalation summaries

Preferred

• Exposure to CSPM/CWPP platform
• Familiarity with various log schemas
• Scripting proficiency in Python or similar for basic automation and log parsing
• Relevant certifications: CompTIA Security+, CySA+, GCIH, GCIA, or equivalent.

AlphaSense is an equal-opportunity employer. We are committed to a work environment that supports, inspires, and respects all individuals. All employees share in the responsibility for fulfilling AlphaSense’s commitment to equal employment opportunity. AlphaSense does not discriminate against any employee or applicant on the basis of race, color, sex (including pregnancy), national origin, age, religion, marital status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any other non-merit factor. This policy applies to every aspect of employment at AlphaSense, including recruitment, hiring, training, advancement, and termination.

In addition, it is the policy of AlphaSense to provide reasonable accommodation to qualified employees who have protected disabilities to the extent required by applicable laws, regulations, and ordinances where a particular employee works.

Recruiting Scams and Fraud

We at AlphaSense have been made aware of fraudulent job postings and individuals impersonating AlphaSense recruiters. These scams may involve fake job offers, requests for sensitive personal information, or demands for payment. Please note:

• AlphaSense never asks candidates to pay for job applications, equipment, or training.
• All official communications will come from an @alpha-sense.com email address.
• If you’re unsure about a job posting or recruiter, verify it on our Careers page.

If you believe you’ve been targeted by a scam or have any doubts regarding the authenticity of any job listing purportedly from or on behalf of AlphaSense please contact us. Your security and trust matter to us.