Senior SOC Analyst (all) 100%

As a Senior SOC Analyst at Alpiq, you will play a critical role in advancing the maturity of our cybersecurity operations. You will be at the forefront of securing a complex environment encompassing IT, OT, and cloud infrastructure. Your expertise will drive improvements across key domains, including Incident Management, Vulnerability Management, Threat Hunting, and Incident Response, while contributing to platform support and engineering efforts.

You will work closely with the Security Operations Manager and the CISO to ensure robust incident response capabilities, enhance proactive monitoring, and implement strategic cybersecurity tools and frameworks to protect the organization’s critical infrastructure.

Your main responsibilities

• Incident Management and Response: Lead and coordinate incident response efforts, including managing investigations and containing and recovering from security incidents
• Threat Hunting and Monitoring: Conduct proactive threat hunting across IT and OT, integrating emerging threat actor TTPs into detection workflows and dark web monitoring to mitigate risks
• Vulnerability Management: Manage vulnerability management tools (e.g., Qualys, Tenable) to monitor, assess, and remediate vulnerabilities through a comprehensive VM lifecycle.
• Security orchestration: Implement automation to remediate misconfigurations, reduce human error, and streamline daily operations
• Detection Engineering: Optimize and test security tools and use cases to enhance threat detection, close detection gaps, and align with evolving TTPs and security standards.
• Governance Support: Assess and improve security controls, while maintaining up-to-date standards and procedures tailored to the Alpiq environment.
• Security Reporting: Develop dashboards and reports to provide near-real-time visibility into the organization’s risk posture and incident response metrics.

Your profile

• Bachelor’s degree in IT, Cybersecurity, or a related field; equivalent professional experience considered.
• Industry-recognized certifications (e.g., CISSP, OSCP, GIAC) are highly desirable or willing to obtain them.
• Minimum of 6-8 years of hands-on experience in cybersecurity roles, with a focus on operations, incident response, and engineering.
• Flair for AI topics.
• Familiarity with regulatory frameworks and compliance requirements.
• Fluency in English required.
• Nice to have: Python scripting, programming experience, defending cloud environments with preference for AWS.